EG
UIUC VLA redirection attack demonstration: a one-character prompt change redirects robot trajectory from stove to plate
Home/Research
ResearchJune 21, 2026EG Editorial

UIUC Discovers Trajectory-Level Redirection Attacks on VLA Robot Models — 7 out of 9 Models Vulnerable

UIUC researchers expose a critical vulnerability in VLA robot control: near-benign prompt perturbations redirect physical trajectories. 7/9 model families show >90% attack success, including OpenVLA and GR00T-N1. Real SO-100 robot validation.

Reading in English

UIUC Researchers Expose Trajectory-Level Redirection Attacks on VLA Robot Models

A research team from UIUC has identified a critical security vulnerability in vision-language-action (VLA) models. Their study (arXiv:2606.12978) shows that seemingly benign prompt modifications can redirect a robot's entire physical trajectory.

The attack, termed 'command-preserving trajectory redirection,' exploits VLA closed-loop control. Changing just one character — e.g., 'put the bowl on the stove' to 'put the bowl on the staove' — redirects the frozen policy to place the bowl on a plate instead.

Key Findings

  • Tested across 9 VLA model families: OpenVLA, MolmoAct, π0.5, SmolVLA, GR00T-N1 — 7 achieved >90% attack success
  • Real SO-100 robot arm hardware validation
  • On-policy prompt search discovers perturbations tracking attacker-specified targets

Best defense: user instruction normalization to a trusted task set. Paper accepted at CoRL 2026.

Source: arXiv:2606.12978

Source: arXiv:2606.12978
Language: English- Showing content in English

Trending Now

2026: The Year of Embodied AI Mass Production - 34.5 Billion Yuan in Funding and State Grid's 6.8 Billion Procurement
Industry

2026: The Year of Embodied AI Mass Production - 34.5 Billion Yuan in Funding and State Grid's 6.8 Billion Procurement

May 8, 2026 · 493 views

Top 10 Embodied AI Advances (2025-2026) Released: China's Humanoid Robots Enter 'Work Mode' Era
Research

Top 10 Embodied AI Advances (2025-2026) Released: China's Humanoid Robots Enter 'Work Mode' Era

Jun 19, 2026 · 321 views

China Q1 2026 Embodied AI Funding Reaches 556 Billion Yuan
Funding

China Q1 2026 Embodied AI Funding Reaches 556 Billion Yuan

Apr 29, 2026 · 216 views

Humanoid Robot Funding Report 2026: Record $13.8B+ Invested in Embodied AI
Research

Humanoid Robot Funding Report 2026: Record $13.8B+ Invested in Embodied AI

Jun 18, 2026 · 208 views

View full leaderboard

More in Research

Thinker: A Vision-Language Foundation Model for Embodied Intelligence Achieves SOTA on Robot Benchmarks
Research

Thinker: A Vision-Language Foundation Model for Embodied Intelligence Achieves SOTA on Robot Benchmarks

Jun 22, 2026

Li Fei-Fei Team Proposes ENACT Benchmark to Reveal Human-AI Gap in Embodied Cognition
Research

Li Fei-Fei Team Proposes ENACT Benchmark to Reveal Human-AI Gap in Embodied Cognition

Jun 21, 2026

Holi-Spatial: ICML 2026 Oral — Fully Automated 3D Spatial Intelligence Data Pipeline with 4M-Scale Dataset
Research

Holi-Spatial: ICML 2026 Oral — Fully Automated 3D Spatial Intelligence Data Pipeline with 4M-Scale Dataset

Jun 21, 2026

MemoryWAM: New World Action Model with Persistent Memory Achieves Breakthrough in Long-Horizon Robot ManipulationAether AI Raises $20M to Build Causal World Models for Embodied Intelligence — A New Paradigm Beyond Scaling LawsGalaxy General Launches AstraBrain-WBC 0.5: The World's First Humanoid 'Cerebellum' GPT Foundation Model

Share this article

TwitterLinkedInFacebook