CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2025-2894

High Severity
SVRS
66/100
CVSSv3
6.6/10
EPSS
0.00058/1

CVE-2025-2894: Backdoor Vulnerability in Go1 Robot. This security flaw allows unauthorized remote access, giving attackers complete control via the CloudSail service. The Go1 robot, also known as "The World's First Intelligence Bionic Quadruped Robot Companion of Consumer Level," contains this undocumented backdoor, exploitable with the correct API key.

The vulnerability stems from a flaw in the design, classified as CWE-912. With an SVRS score of 66, it represents a moderate risk but still warrants attention. Successful exploitation could lead to device compromise, data theft, or malicious manipulation of the robot's functions. This CVE is significant because it highlights the risks associated with IoT device security and the potential for backdoors to be exploited. Immediate patching or mitigation is recommended to prevent unauthorized access.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:N
AC:H
PR:H
UI:N
S:U
C:H
I:H
A:H
PUBLICATION DATE2025-03-28
LAST MODIFIED2025-04-03

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

These Robot Dogs Kept Going Viral on Social Media — Turns Out, They Have a Spying Backdoor - ZME Science
2025-04-07
These Robot Dogs Kept Going Viral on Social Media — Turns Out, They Have a Spying Backdoor - ZME Science | News Content: Two cybersecurity researchers have now revealed that the China-based manufacturer Unitree Robotics pre-installed an undocumented remote access backdoor into every Go1 robot. Their investigation uncovered how anyone, could potentially tap into these robots — viewing camera feeds, locating devices in real time, and even seizing full control without permission. This isn’t just a slight security oversight. It’s a major security risk in a widely sold consumer robot. The report doesn’t claim whether this was intentional or
google.com
rss
forum
news
CVE-2025-2894 | Unitree Go1 2022_05_11_e0d0e617 Access Service backdoor (ID 120)
vuldb.com2025-03-28
CVE-2025-2894 | Unitree Go1 2022_05_11_e0d0e617 Access Service backdoor (ID 120) | A vulnerability was found in Unitree Go1 2022_05_11_e0d0e617. It has been classified as critical. This affects an unknown part of the component Access Service. The manipulation leads to backdoor. This vulnerability is uniquely identified as CVE-2025-2894. It is possible to initiate the attack remotely. There
vuldb.com
rss
forum
news

Social Media

@ThomasHgg165486 @Byron_Wan @Byron_Wan @ThomasHgg165486 Digging deeper, the Unitree GO1 vulnerability (CVE-2025-2894) involves a pre-installed backdoor via CloudSail, risking remote control and surveillance. It affects 1,919 devices globally, including MIT and Carnegie Mellon. Likely sloppy coding, not
1
0
0
@DeepinJapanPod @Byron_Wan @JohnHawes Yes, it’s true. Research confirms that Unitree Go1 robot dogs have an undocumented remote access tunnel (CVE-2025-2894), allowing unauthorized control via a default CloudSail service. Security experts have verified this vulnerability, posing risks like remote operation and camera
0
0
0
CVE-2025-2894 for @UnitreeRobotics Zhexi/Oray backdoor working its way through the meat grinder... it should have the same info @Bin4ryDigit and I shared this week soon. Big thanks to @todb & "AHA!" crew. https://t.co/CYpMG1MBxi
0
0
0

Affected Software

No affected software found for this CVE

References

ReferenceLink
[email protected]https://github.com/MAVProxyUser/YushuTechUnitreeGo1/blob/main/Unitree_report.pdf
[email protected]https://github.com/unitreerobotics/unitree_ros/issues/120
[email protected]https://takeonme.org/cves/cve-2025-2894/
[email protected]https://x.com/d0tslash/status/1730989109332607208
[email protected]https://github.com/MAVProxyUser/YushuTechUnitreeGo1/blob/main/Unitree_report.pdf
[email protected]https://github.com/unitreerobotics/unitree_ros/issues/120
[email protected]https://takeonme.org/cves/cve-2025-2894/
[email protected]https://www.axios.com/2025/04/01/threat-spotlight-backdoor-in-chinese-robots-future-of-cybersecurity
[email protected]https://x.com/d0tslash/status/1730989109332607208

CWE Details

CWE IDCWE NameDescription
CWE-912Hidden FunctionalityThe software contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the software's users or administrators.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence