← back
CVE-2025-60251

CVE-2025-60251

CVSS 5 MEDIUMEPSS 0.2%CWE-306
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
26 Sep 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 accept any handshake secret with the unitree substring.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected products
Unitree · B2Unitree · G1Unitree · Go2Unitree · H1

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/Bin4ry/UniPwnhttps://news.ycombinator.com/item?id=45381590https://spectrum.ieee.org/unitree-robot-exploit