Aliasrobotics Mir250 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Aliasrobotics Mir250 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2020-10272 — CVSS 9.8 (critical): MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph without any sort…
CVE-2020-10270 — CVSS 9.8 (critical): Out of the wired and wireless interfaces within MiR100, MiR200 and other vehicles from the MiR fleet, it's possible to access the Control…
CVE-2020-10271 — CVSS 9.8 (critical): MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph to all network…
CVE-2020-10269 — CVSS 9.8 (critical): One of the wireless interfaces within MiR100, MiR200 and possibly (according to the vendor) other MiR fleet vehicles comes pre-configured…
CVE-2020-10279 — CVSS 9.8 (critical): MiR robot controllers (central computation unit) makes use of Ubuntu 16.04.2 an operating system, Thought for desktop uses, this operating…
CVE-2020-10273 — CVSS 7.5 (high): MiR controllers across firmware versions 2.8.1.1 and before do not encrypt or protect in any way the intellectual property artifacts…
CVE-2020-10278 — CVSS 4.6 (medium): The BIOS onboard MiR's Computer is not protected by password, therefore, it allows a Bad Operator to modify settings such as boot order…