CVE-2025-14346
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
WHILL Model C2 Electric Wheelchairs and Model F Power Chairs do not enforce authentication for Bluetooth connections. An attacker within range can pair with the device and issue movement commands, override speed restrictions, and manipulate configuration profiles without any credentials or user interaction.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WHILL | Model C2 Electric Wheelchair | all | affected |
| WHILL | Model F Power Chair | all | affected |
Weaknesses
- CWE-306: CWE-306 Missing Authentication for Critical Function
Workarounds
WHILL has deployed the following fixes on December 29th, 2025:
Device-Side Speed Profile Protection:
- Implemented a safeguard in the wheelchair firmware to prevent unauthorized modification of speed profiles from the mobile application.
Unlock Command Restriction During Motion:
- Block unlock commands issued from either the mobile app or the smart key while the wheelchair is in motion.
Application JSON File Obfuscation:
- Obfuscate the configuration files used by the mobile application by converting JSON files into a binary format on both Android and iOS platforms.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.