CVE-2022-2675
MEDIUMUnitree Go 1 Firmware < 0.1.35 - Unauthenticated Denial of Service via RF Signal
Title source: llmDescription
Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_misc
https://twitter.com/d0tslash/status/1555326302462394370
Product, Third Party Advisory x_refsource_misc
https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729
Product, Third Party Advisory x_refsource_misc
https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf
Scores
CVSS v3
6.5
EPSS
0.0046
EPSS Percentile
36.0%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-285
Status
published
Products (1)
unitree/go_1_firmware
< 0.1.35
Published
Aug 05, 2022
Tracked Since
Feb 18, 2026