CVE-2018-17933

Name: CVE-2018-17933
Creator: NVD / NIST
Published: 2018-10-30T21:29:01.09+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.21%

Last modified Jun 17, 2026

CVE-2018-17933 is a vulnerability of currently unknown severity. VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also be affected) connected to the VGo XAMPP. EPSS estimates a 1.21% chance of exploitation in the next 30 days.

Description

VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also be affected) connected to the VGo XAMPP. User accounts may be able to execute commands that are outside the scope of their privileges and within the scope of an admin account. If an attacker has access to VGo XAMPP Client credentials, they may be able to execute admin commands on the connected robot.

Metrics

EPSS Probability

1.21%

64.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-285

Affected Software

Vendor	Product	Versions
Vecna	Vgo Firmware	3.0.3.52164
Vecna	Vgo Firmware	3.0.3.53662

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-114-01Third Party Advisory, US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-114-01Third Party Advisory, US Government Resource

Timeline

Published: Oct 30, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2018-17933?

How severe is CVE-2018-17933?

Severity scoring for CVE-2018-17933 is pending analysis. The EPSS model estimates a 1.21% probability of exploitation in the next 30 days.

How do I fix CVE-2018-17933?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-17933?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST