Easyrobotics - Er-flex CVE

Filtered by vendor Easyrobotics Subscribe

Filtered by product Er-flex

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-10277	3 Easyrobotics, Mobile-industrial-robots, Uvd-robots	20 Er-flex, Er-flex Firmware, Er-lite and 17 more	2021-09-14	4.6 MEDIUM	6.4 MEDIUM
There is no mechanism in place to prevent a bad operator to boot from a live OS image, this can lead to extraction of sensible files (such as the shadow file) or privilege escalation by manually adding a new user with sudo privileges on the machine.

Vulnerabilities (CVE)