CNNVD-202509-4220 Information

CNNVD ID

CNNVD-202509-4220

Related CVE

CVE-2025-60251

• CNNVD Published: 2025-09-26

Description (Chinese)

Unitree Go2等都是中国宇树（Unitree）公司的产品。Unitree Go2是一款机器狗。Unitree G1是一款人形机器人。Unitree H1是一款人形机器人。 Unitree多款产品存在安全漏洞，该漏洞源于接受包含unitree子字符串的任意握手密钥。以下产品及版本受到影响：Unitree Go2、G1、H1和B2 2025-09-20及之前版本。

Description (English)

Unitree Go2 and others are products of Unitree China. Unitree Go2 is a machine dog. Unitree G1 is a human robot. Unitree H1 is a human robot. There is a safety loophole in a number of Unitree products, which stems from the acceptance of any handshake key containing a unitree string. The following products and versions were affected: Unitree Go2, G1, H1 and B2 2025-09-20 and earlier.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

宇树

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/Bin4ry/UniPwn https://news.ycombinator.com/item?id=45381590 https://spectrum.ieee.org/unitree-robot-exploit