CVE-2022-2675

Summary

Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1.

Affected Software

VendorProductVersion RangeStatus
UnitreeGo 10.1.35 <= 0.1.35affected
UnitreeGo 10.1.35 < 0.1.35affected

Weaknesses

  • CWE-285: CWE-285 Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References