What is the CVSS score of CVE-2026-1442?

CVE-2026-1442 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Go2 Edu Plus Firmware are affected by CVE-2026-1442?

All Unitree robotic products (Go2 and others) are vulnerable to unauthorized firmware modification due to weak encryption key management, allowing attackers to inject malicious code that will be…

Is there a public PoC exploit available for CVE-2026-1442?

Yes, a public proof-of-concept exploit is available for CVE-2026-1442. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2026-1442?

Within 24 hours: Inventory all Unitree devices in your environment and isolate them from critical networks if possible. Within 7 days: Restrict physical access to Unitree devices, disable remote firmware update capabilities if supported, and implement network segmentation to limit lateral movement if a device is compromised. Within 30 days: Establish a vendor communication channel with Unitree for patch timelines, evaluate alternative robotic platforms, and implement enhanced monitoring/logging on affected devices to detect unauthorized firmware modifications.

Go2 Edu Plus Firmware CVE-2026-1442

HIGH

Use of Hard-coded Cryptographic Key (CWE-321)

2026-02-27 cve@takeonme.org

Authentication Bypass Go2 Edu Plus Firmware Go1 Air Firmware Go2 Air Firmware Go1 Pro Firmware Go2 Edu Standard Firmware Go2 X Firmware Go2 Pro Firmware

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Mar 11, 2026 - 19:40 vuln.today

Public exploit code

CVE Published

Feb 27, 2026 - 05:18 nvd

HIGH 7.8

DescriptionCVE.org

Since the encryption algorithm used to protect firmware updates is itself encrypted using key material available to an attacker (or anyone paying attention), the firmware updates may be altered by an unauthorized user, and then trusted by a Unitree product, such as the Unitree Go2 and other models. This issue appears to affect all of Unitree’s current offerings as of February 26, 2026, and so should be considered a vulnerability in both the firmware generation and extraction processes. At the time of this release, there is no publicly-documented mechanism to subvert the update process and insert poisoned firmware packages without the equipment owner’s knowledge.

AnalysisAI

Unitree robotics firmware updates can be modified and executed by local attackers due to inadequate encryption of the firmware protection mechanism, allowing arbitrary code execution on affected Go1 and Go2 models. Public exploit code exists for this vulnerability, and no patch is currently available. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Obtain firmware update file

Delivery

Extract encryption key from publicly available material

Exploit

Decrypt and modify firmware payload

Execution

Re-encrypt with compromised key

Persist

Deliver modified firmware to Unitree device

Impact

Execute arbitrary code on robot

Access

Obtain firmware update file

Delivery

Extract encryption key from publicly available material

Exploit

Decrypt and modify firmware payload

Execution

Re-encrypt with compromised key

Persist

Deliver modified firmware to Unitree device

Impact

Execute arbitrary code on robot

Vulnerability AssessmentAI

Exploitation	Local access to firmware update files or update delivery mechanism; attacker must have obtained the encryption key material used by Unitree's firmware generation process, which is reportedly available to attackers; user interaction required to initiate firmware update on Unitree Go2 or other affected Unitree robot models. Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 7.8 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker without authentication could exploit this vulnerability to compromise the affected system.
Remediation	Monitor vendor advisories for a patch. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Unitree devices in your environment and isolate them from critical networks if possible. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-1442 vulnerability details – vuln.today

Back

Go2 Edu Plus Firmware CVE-2026-1442

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code