CVE-2025-60251

🗓️ 26 Sep 2025 00:00:00Reported by mitreType

CVE-2025-60251 affects Unitree Go2, G1, H1, B2; devices accept any handshake secret with unitree substring.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-60251	26 Sep 202504:41	–	circl
CNNVD	Unitree多款产品安全漏洞	26 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-60251	26 Sep 202500:00	–	cvelist
EUVD	EUVD-2025-31181	3 Oct 202520:07	–	euvd
NVD	CVE-2025-60251	26 Sep 202501:15	–	nvd
Positive Technologies	PT-2025-39471	26 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-60251	27 Sep 202500:48	–	redhatcve
Vulnrichment	CVE-2025-60251	26 Sep 202500:00	–	vulnrichment

Vulners

Node

unitree go2Range0–2025-09-20

unitree g1Range0–2025-09-20

unitree h1Range0–2025-09-20

unitree b2Range0–2025-09-20

[
  {
    "defaultStatus": "unknown",
    "product": "Go2",
    "vendor": "Unitree",
    "versions": [
      {
        "lessThanOrEqual": "2025-09-20",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "product": "G1",
    "vendor": "Unitree",
    "versions": [
      {
        "lessThanOrEqual": "2025-09-20",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "product": "H1",
    "vendor": "Unitree",
    "versions": [
      {
        "lessThanOrEqual": "2025-09-20",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "product": "B2",
    "vendor": "Unitree",
    "versions": [
      {
        "lessThanOrEqual": "2025-09-20",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
news	www.news.ycombinator.com/item
spectrum	www.spectrum.ieee.org/unitree-robot-exploit
github	www.github.com/Bin4ry/UniPwn

15 Apr 2026 00:35Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.15

EPSS0.00019

SSVC

CWE-306

unitree go2 unitree g1 unitree h1 unitree b2 handshake secret substring vulnerability