CVE-2025-41108 identifies a critical security flaw in the Ghost Robotics Vision 60 robot, version 0.27.2, where the communication protocol used between the robot and its control station (tablet) is vulnerable to improper authentication (CWE-287). The protocol is based on MAVLink, a widely documented and open communication standard for unmanned vehicles, which inherently lacks encryption and authentication mechanisms in this implementation. This allows an attacker positioned on the same network or capable of intercepting traffic over Wi-Fi or 4G/LTE to capture legitimate command packets sent from the control station to the robot. By replaying or crafting these packets, the attacker can impersonate the control station and send arbitrary commands to the robot, effectively gaining unauthorized full control. The vulnerability does not require any prior authentication or user interaction, and the attack surface includes any remote connection method supported by the robot. The CVSS 4.0 score of 9.2 (critical) reflects the high impact on confidentiality, integrity, and availability, combined with the ease of exploitation and lack of required privileges. Although no exploits are currently known in the wild, the exposure of such a critical flaw in a robotic platform used potentially in sensitive or operational contexts raises serious security concerns. The absence of encryption and authentication in the communication protocol is a fundamental design weakness that must be addressed to prevent unauthorized command injection and control takeover.

For European organizations deploying Ghost Robotics Vision 60 robots, this vulnerability could lead to severe operational disruptions, including unauthorized control of robotic assets, data leakage, and potential sabotage. In sectors such as defense, critical infrastructure, security services, and industrial automation, compromised robots could be used to conduct espionage, physical damage, or denial of service. The ability to remotely control the robot without authentication increases the risk of attacks originating from outside the immediate network perimeter, expanding the threat landscape. Confidentiality is compromised as attackers can intercept and manipulate command data; integrity is affected as unauthorized commands can alter robot behavior; availability is at risk if attackers disable or misuse the robot. The lack of known patches or mitigations at present exacerbates the risk. Organizations relying on these robots for sensitive tasks must consider the potential for operational failure or compromise, which could have cascading effects on safety and mission success.

Immediate mitigation should focus on network-level controls: restrict access to the robot's Wi-Fi and 4G/LTE interfaces using strong network segmentation, firewalls, and VPNs to limit exposure to trusted devices only. Employ intrusion detection systems to monitor for anomalous MAVLink traffic patterns indicative of replay or spoofing attacks. Until a vendor patch is available, disable remote access capabilities where feasible or operate the robot in isolated environments. Advocate for and implement end-to-end encryption and mutual authentication in the communication protocol to prevent unauthorized command injection. Regularly update firmware and software once patches are released by Ghost Robotics. Conduct security audits and penetration testing focused on robotic communication channels. Train operational personnel on the risks of using unsecured wireless connections and enforce strict operational security policies. Consider deploying additional physical security controls to prevent unauthorized proximity attacks. Engage with the vendor to prioritize development and deployment of secure communication protocols and authentication mechanisms.