Vulnerabilities > CVE-2023-3103 - Unspecified vulnerability in Unitree A1 Firmware

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

high complexity

unitree

NVD

Published: 2023-11-22

Updated: 2024-11-21

Summary

Authentication bypass vulnerability, the exploitation of which could allow a local attacker to perform a Man-in-the-Middle (MITM) attack on the robot's camera video stream. In addition, if a MITM attack is carried out, it is possible to consume the robot's resources, which could lead to a denial-of-service (DOS) condition.

Vulnerable Configurations

Part	Description	Count
OS	Unitree Unitree A1 Firmware -	1
Hardware	Unitree Unitree A1 1.16	1

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-unitree-robotics-a1
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-unitree-robotics-a1