{"api_version":"1","generated_at":"2026-06-20T18:17:32+00:00","cve":"CVE-2022-2675","urls":{"html":"https://cve.report/CVE-2022-2675","api":"https://cve.report/api/cve/CVE-2022-2675.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2022-2675","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2022-2675"},"summary":{"title":"CVE-2022-2675","description":"Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1.","state":"PUBLIC","assigner":"cve@rapid7.com","published_at":"2022-08-05 17:15:00","updated_at":"2023-06-28 13:58:00"},"problem_types":["NVD-CWE-Other"],"metrics":[],"references":[{"url":"https://twitter.com/d0tslash/status/1555326302462394370","name":"https://twitter.com/d0tslash/status/1555326302462394370","refsource":"MISC","tags":[],"title":"KF on Twitter: \"Good news! Remember that robot dog you saw with a gun!? It was made by @UnitreeRobotics. Seems all you need to dump it in the dirt is @flipper_zero. The PDB has a 433mhz backdoor. No need for @gnuradio! https://t.co/xjDepcGYe2 cc/ @UnitreeRobot007 @IrvingRobotics @shunweicapital https://t.co/6PJHjcsgJL\" / Twitter","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf","name":"https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf","refsource":"MISC","tags":[],"title":"","mime":"application/pdf","httpstatus":"200","archivestatus":"200"},{"url":"https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729","name":"https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729","refsource":"MISC","tags":[],"title":"Just a moment...","mime":"text/html","httpstatus":"503","archivestatus":"404"},{"url":"https://www.cve.org/CVERecord?id=CVE-2022-2675","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2675","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[{"source":"LEGACY","value":"Discovered and reported by security researcher Kevin Finisterre","lang":""}],"nvd_cpes":[{"cve_year":"2022","cve_id":"2675","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"unitree","cpe5":"go_1","cpe6":"h0.1.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"2675","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"unitree","cpe5":"go_1","cpe6":"h0.1.9","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"2675","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"unitree","cpe5":"go_1_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"2675","vulnerable":"1","versionEndIncluding":"0.1.35","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"unitree","cpe5":"go_1_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","generator":{"engine":"Vulnogram 0.0.9"},"CVE_data_meta":{"ID":"CVE-2022-2675","ASSIGNER":"cve@rapid7.com","DATE_PUBLIC":"2022-08-04T22:54:00.000Z","TITLE":"Unitree Go 1 \"Robot Dog\" Unauthenticated Remote Power Down","AKA":"","STATE":"PUBLIC"},"source":{"defect":[],"advisory":"","discovery":"EXTERNAL"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"Unitree","product":{"product_data":[{"product_name":"Go 1","version":{"version_data":[{"version_name":"0.1.35","version_affected":"<=","version_value":"0.1.35","platform":"H0.1.7"},{"version_name":"0.1.35","version_affected":"<","version_value":"0.1.35","platform":"H0.1.9"}]}}]}}]}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-285 Improper Authorization"}]}]},"description":{"description_data":[{"lang":"eng","value":"Using off-the-shelf commodity hardware, the Unitree Go 1 robotics platform version H0.1.7 and H0.1.9 (using firmware version 0.1.35) can be powered down by an attacker within normal RF range without authentication. Other versions may be affected, such as the A1."}]},"references":{"reference_data":[{"refsource":"MISC","url":"https://twitter.com/d0tslash/status/1555326302462394370","name":"https://twitter.com/d0tslash/status/1555326302462394370"},{"refsource":"MISC","url":"https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729","name":"https://fccid.io/2A5PE-YUSHU001/Users-Manual/User-Manual-5810729"},{"refsource":"MISC","url":"https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf","name":"https://www.mybotshop.de/Datasheet/Unitree_A1_User_Manual_v1.0.pdf"}]},"configuration":[],"exploit":[],"work_around":[],"solution":[],"credit":[{"lang":"eng","value":"Discovered and reported by security researcher Kevin Finisterre"}]},"nvd":{"publishedDate":"2022-08-05 17:15:00","lastModifiedDate":"2023-06-28 13:58:00","problem_types":["NVD-CWE-Other"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH","baseScore":6.5,"baseSeverity":"MEDIUM"},"exploitabilityScore":2.8,"impactScore":3.6}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:unitree:go_1_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"0.1.35","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:unitree:go_1:h0.1.7:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:unitree:go_1_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"0.1.35","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:unitree:go_1:h0.1.9:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":null,"notes":[]}}}