Go1 Firmware

go1_firmware

Vendor: Unitree • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-45466 1Unitree 1Go1 Firmware Jan 12, 2026 Jul 25, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Unitree Go1 <= Go1_2022_05_11 is vulnerale to Incorrect Access Control due to authentication credentials being hardcoded in plaintext.
CVE-2025-45467 1Unitree 1Go1 Firmware Jan 12, 2026 Jul 25, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update functionality (via Wi-Fi/Ethernet) implements an insecure verification mechanism that solely relies on MD5 checksums for firmware...Show more Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update functionality (via Wi-Fi/Ethernet) implements an insecure verification mechanism that solely relies on MD5 checksums for firmware integrity validation.Show less
CVE-2025-2894 1Unitree 1Go1 Firmware Jan 12, 2026 Mar 28, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 The Go1 also known as "The World's First Intelligence Bionic Quadruped Robot Companion of Consumer Level," contains an undocumented backdoor that can enable the manufacturer, and anyone in possession of the correct API k...Show more The Go1 also known as "The World's First Intelligence Bionic Quadruped Robot Companion of Consumer Level," contains an undocumented backdoor that can enable the manufacturer, and anyone in possession of the correct API key, complete remote control over the affected robotic device using the CloudSail remote access service.Show less