CNNVD-202509-4221 Information
CNNVD ID
CNNVD-202509-4221
Related CVE
- CNNVD Published: 2025-09-26
Description (Chinese)
Unitree Go2等都是中国宇树(Unitree)公司的产品。Unitree Go2是一款机器狗。Unitree G1是一款人形机器人。Unitree H1是一款人形机器人。 Unitree多款产品存在安全漏洞,该漏洞源于使用固定密钥和IV解密BLE数据包数据,可能导致数据泄露。以下产品及版本受到影响:Unitree Go2、G1、H1和B2 2025-09-20及之前版本。
Description (English)
Unitree Go2 and others are products of Unitree China. Unitree Go2 is a machine dog. Unitree G1 is a human robot. Unitree H1 is a human robot. There is a safety gap in the Unitree multi-products, which arises from the use of fixed key and IV declassification of BLE data packages, which could lead to data leakage. The following products and versions were affected: Unitree Go2, G1, H1 and B2 2025-09-20 and earlier.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
宇树
Published
2025-09-26
Last Modified
2026-02-24
References
https://github.com/Bin4ry/UniPwn https://news.ycombinator.com/item?id=45381590 https://spectrum.ieee.org/unitree-robot-exploit
Share on: