CVE-2025-14346

Summary

WHILL Model C2 Electric Wheelchairs and Model F Power Chairs do not enforce authentication for Bluetooth connections. An attacker within range can pair with the device and issue movement commands, override speed restrictions, and manipulate configuration profiles without any credentials or user interaction.

Affected Software

VendorProductVersion RangeStatus
WHILLModel C2 Electric Wheelchairallaffected
WHILLModel F Power Chairallaffected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

Workarounds

WHILL has deployed the following fixes on December 29th, 2025:

Device-Side Speed Profile Protection:

  • Implemented a safeguard in the wheelchair firmware to prevent unauthorized modification of speed profiles from the mobile application.

Unlock Command Restriction During Motion:

  • Block unlock commands issued from either the mobile app or the smart key while the wheelchair is in motion.

Application JSON File Obfuscation:

  • Obfuscate the configuration files used by the mobile application by converting JSON files into a binary format on both Android and iOS platforms.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References