CVE-2018-8858

CRITICAL

VGo Robot <3.0.3.53662 - Info Disclosure

Title source: llm

Description

If an attacker has access to the firmware from the VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also be affected) they may be able to extract credentials.

References (1)

[Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSA-18-114-01

Scores

CVSS v3 9.8

EPSS 0.0024

EPSS Percentile 46.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-522

Status published

Affected Products (2)

vecna/vgo_firmware < 3.0.3.52164

vecna/vgo_firmware

Timeline

Published Oct 30, 2018

Tracked Since Feb 18, 2026