Unitree Robotics Command Injection Vulnerability in BLE Wi-Fi Configuration

A command injection vulnerability has been identified in multiple robotic products by Unitree, including the Go2, G1, H1, and B2 devices, all running a common firmware through September 20, 2025. The vulnerability arises from the Bluetooth Low Energy (BLE) Wi-Fi configuration interface, where an attacker can inject malicious commands by exploiting hardcoded cryptographic keys and a weak authentication mechanism. When the injected payloads are processed, they are executed with root privileges via a specific shell script, creating a significant security risk.

Impact

Exploitation of this vulnerability allows for arbitrary command execution with root privileges on the affected robot. This could lead to complete control over the device, including the possibility of transferring and executing malware. The vulnerability is also wormable, allowing infected robots to automatically compromise other nearby Unitree robots via Bluetooth.

Reproduction

To reproduce this vulnerability, first pair with the affected robot over Bluetooth Low Energy (BLE). This can be done by bypassing the trivial authentication requirement using the hardcoded AES key and IV to encrypt the handshake string. Once paired, the vulnerability can be exploited by injecting commands through the Wi-Fi SSID or password parameters when configuring the Wi-Fi settings. After setting the country code to trigger the Wi-Fi configuration thread, the robot will execute the injected commands with root privileges.