A1 Firmware

a1_firmware

Vendor: Unitree • 2 CVEs

CVEs (2)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

1Unitree

1A1 Firmware

Nov 21, 2024

Nov 22, 2023

N/A· v4

7.5 HIGH· v3

N/A· v2

Lack of authentication vulnerability. An unauthenticated local user is able to see through the cameras using the web server due to the lack of any form of authentication.

1Unitree

1A1 Firmware

Nov 21, 2024

Nov 22, 2023

N/A· v4

5.9 MEDIUM· v3

N/A· v2

Authentication bypass vulnerability, the exploitation of which could allow a local attacker to perform a Man-in-the-Middle (MITM) attack on the robot's camera video stream. In addition, if a MITM attack is carried out, i...Show more

Authentication bypass vulnerability, the exploitation of which could allow a local attacker to perform a Man-in-the-Middle (MITM) attack on the robot's camera video stream. In addition, if a MITM attack is carried out, it is possible to consume the robot's resources, which could lead to a denial-of-service (DOS) condition.Show less