OTPulse

Universal Robots Polyscope 5

Plan PatchCVSS 9.8ICS-CERT ICSA-26-134-17May 14, 2026
Attack path
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

A command injection vulnerability in the Polyscope 5 dashboard server allows an attacker to bypass authentication and execute arbitrary code on the robot controller. The vulnerability is in the dashboard server component and can be exploited remotely over the network without valid credentials.

What this means
What could happen
An attacker could bypass authentication and execute arbitrary code on a Universal Robots cobot controller, potentially allowing them to modify robot behavior, alter task programs, or disable safety functions.
Who's at risk
This affects organizations that operate Universal Robots collaborative robots (cobots) with Polyscope 5 controllers. Impacted users include manufacturing plants, assembly facilities, and any industrial setting using UR cobots for material handling, welding, or other automation tasks.
How it could be exploited
An attacker with network access to the Polyscope 5 dashboard server (port 29999 or web interface) can send a specially crafted command that injects code into the system. The vulnerability bypasses authentication, so no valid credentials are needed. The injected code runs with the privileges of the dashboard service, allowing arbitrary command execution on the controller.
Prerequisites
  • Network access to the Polyscope 5 dashboard server
  • Vulnerable version (Polyscope 5 prior to 5.25.1)
  • No authentication credentials required
remotely exploitableno authentication requiredlow complexityhigh CVSS score (9.8)affects industrial robot control systems
Exploitability
Some exploitation risk — EPSS score 1.5%
Affected products (1)
ProductAffected VersionsFix Status
Polyscope 5<5.25.1Fix available
Remediation & Mitigation
0/3
Do now
0/1
WORKAROUNDRestrict network access to the Polyscope 5 dashboard server to only authorized engineering workstations and control networks
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate Polyscope 5 to version 5.25.1 or later
Long-term hardening
0/1
HARDENINGSegment the robot controller network from untrusted networks and the internet
View full CISA ICS-CERT advisory
API: /api/v1/advisories/f8ad3b9e-3dc0-4f9c-8e81-2d53789997bf

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.

Universal Robots Polyscope 5 | CVSS 9.8 - OTPulse