CVE-2022-2675
N/A
N/A
Summary
Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unitree | Go 1 | 0.1.35 <= 0.1.35 | affected |
| Unitree | Go 1 | 0.1.35 < 0.1.35 | affected |
Weaknesses
- CWE-285: CWE-285 Improper Authorization
ADP Enrichment
CVE Program Container
Additional References
- https://twitter.com/d0tslash/status/1555326302462394370
- https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729
- https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf
References
- https://twitter.com/d0tslash/status/1555326302462394370
- https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729
- https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.