What is CVE-2026-8153?

CVE-2026-8153 is a critical-severity vulnerability in Universal Robots Polyscope 5, classified under OS Command Injection. CVSS score: 9.8/10. Published 2026-05-08.

How severe is CVE-2026-8153?

Critical severity. CVSS v3 base score is 9.8 out of 10.

RCE in Universal Robots Polyscope 5

CVE-2026-8153

OS command injection in Dashboard Server interface in Universal Robots PolyScope versions prior to 5.25.1 allows unauthenticated attacker to craft commands that will execute code on the robot's OS.

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.015 (81.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Universal Robots Polyscope 5 — versions 0

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

1b7e193f-2525-49a1-b171-84af8827c9eb

Frequently asked questions

What is CVE-2026-8153?: CVE-2026-8153 is a critical-severity vulnerability in Universal Robots Polyscope 5, classified under OS Command Injection. CVSS score: 9.8/10. Published 2026-05-08.
How severe is CVE-2026-8153?: Critical severity. CVSS v3 base score is 9.8 out of 10.