What is the CVSS score of CVE-2026-27510?

CVE-2026-27510 has a CVSS 3.1 base score of 9.6 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Android are affected by CVE-2026-27510?

Organizations using Unitree Go2 robots with affected firmware versions (1.1.7-1.1.11) face critical remote code execution risk, allowing attackers to execute arbitrary commands on robotic systems…

Is there a public PoC exploit available for CVE-2026-27510?

Yes, a public proof-of-concept exploit is available for CVE-2026-27510. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-27510?

Within 24 hours: Inventory all Unitree Go2 robots and identify affected firmware versions; disconnect affected units from networks or disable remote program execution features if operationally feasible. Within 7 days: Contact Unitree for patch timeline; implement network segmentation to restrict robot communication to trusted administrative networks only. Within 30 days: Maintain compensating controls until patch availability; consider alternative robot platforms if timeline for remediation is unacceptable; document all affected assets and establish firmware update procedures for rapid deployment when patches release.

Android CVE-2026-27510

CRITICAL

Insufficient Verification of Data Authenticity (CWE-345)

2026-02-26 disclosure@vulncheck.com

Android Python RCE SQLi Go2 Firmware

9.6

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

9.6 CRITICAL

AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:56 vuln.today

PoC Detected

Mar 12, 2026 - 20:03 vuln.today

Public exploit code

CVE Published

Feb 26, 2026 - 20:31 nvd

CRITICAL 9.6

DescriptionCVE.org

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android application (com.unitree.doggo2), are vulnerable to remote code execution due to missing integrity protection and validation of user-created programmes. The Android application stores programs in a local SQLite database (unitree_go2.db, table dog_programme) and transmits the programme_text content, including the pyCode field, to the robot. The robot's actuator_manager.py executes the supplied Python as root without integrity verification or content validation. An attacker with local access to the Android device can tamper with the stored programme record to inject arbitrary Python that executes when the user triggers the program via a controller keybinding, and the malicious binding persists across reboots. Additionally, a malicious program shared through the application's community marketplace can result in arbitrary code execution on any robot that imports and runs it.

AnalysisAI

Remote control vulnerability in Unitree Go2 robot dog firmware 1.1.7-1.1.11. The companion Android app allows remote attackers to take control of the robot. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Compromise Android device locally

Exploit

Modify SQLite database programme_text

Execution

Send malicious pyCode to robot

Impact

Execute arbitrary Python as root

Access

Compromise Android device locally

Exploit

Modify SQLite database programme_text

Execution

Send malicious pyCode to robot

Impact

Execute arbitrary Python as root

Vulnerability AssessmentAI

Exploitation	Local access to Android device running Unitree Go2 application (com.unitree.doggo2) with Unitree Go2 robot firmware versions 1.1.7–1.1.11. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.6. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Attacker sends commands to a Unitree Go2 robot through the unprotected communication channel, taking physical control of the robot's movement.
Remediation	Update firmware. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all Unitree Go2 robots and identify affected firmware versions; disconnect affected units from networks or disable remote program execution features if operationally feasible. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-12442 HIGH This Week

8.8 Jun 17

Use after free in Passwords in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to execute arb

CVE-2026-12448 HIGH This Week

8.8 Jun 17

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to

CVE-2026-12438 HIGH This Week

8.3 Jun 17

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker wh

CVE-2026-12469 MEDIUM This Month

4.3 Jun 17

Uninitialized Use in GPU in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to leak cross-ori

CVE-2026-12452 This Week

Jun 17

Use after free in Downloads in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to potentially

CVE-2026-27510 vulnerability details – vuln.today

Back

Android CVE-2026-27510

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Share

External POC / Exploit Code