Vulnerabilities > CVE-2022-2675 - Unspecified vulnerability in Unitree GO 1 Firmware

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

unitree

NVD

Published: 2022-08-05

Updated: 2023-06-28

Summary

Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1.

Vulnerable Configurations

Part	Description	Count
OS	Unitree Unitree GO 1 Firmware -	1
Hardware	Unitree Unitree GO 1 H0.1.7 Unitree GO 1 H0.1.9	2

References

https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf
https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729
https://twitter.com/d0tslash/status/1555326302462394370