CVE-2026-1442

Name of the Vulnerable Software and Affected Versions Unitree Go2 and other models versions (affected versions not specified)

Description The encryption algorithm used to protect firmware updates is encrypted using key material accessible to attackers. This allows unauthorized modification of firmware updates, which can then be trusted by Unitree products. The issue affects the firmware generation and extraction processes. Currently, there is no publicly documented method to bypass the update process and inject malicious firmware packages without the owner's knowledge.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.