Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-14346
PUBLISHED
More InfoOfficial Page
Assigner-icscert
Assigner Org ID-7d14cffa-0d7d-4270-9dc0-52cabd5a23a6
View Known Exploited Vulnerability (KEV) details
Published At-05 Jan, 2026 | 15:39
Updated At-05 Jan, 2026 | 21:20
Rejected At-
▼CVE Numbering Authority (CNA)

WHILL Model C2 Electric Wheelchairs and Model F Power Chairs do not enforce authentication for Bluetooth connections. An attacker within range can pair with the device and issue movement commands, override speed restrictions, and manipulate configuration profiles without any credentials or user interaction.

Affected Products
Vendor
WHILL
Product
Model C2 Electric Wheelchair
Default Status
unaffected
Versions
Affected
  • all
Vendor
WHILL
Product
Model F Power Chair
Default Status
unaffected
Versions
Affected
  • all
Problem Types
TypeCWE IDDescription
CWECWE-306CWE-306 Missing Authentication for Critical Function
Type: CWE
CWE ID: CWE-306
Description: CWE-306 Missing Authentication for Critical Function
Metrics
VersionBase scoreBase severityVector
3.19.8CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
4.09.3CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Version: 3.1
Base score: 9.8
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Version: 4.0
Base score: 9.3
Base severity: CRITICAL
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds

WHILL has deployed the following fixes on December 29th, 2025: Device-Side Speed Profile Protection: * Implemented a safeguard in the wheelchair firmware to prevent unauthorized modification of speed profiles from the mobile application. Unlock Command Restriction During Motion: * Block unlock commands issued from either the mobile app or the smart key while the wheelchair is in motion. Application JSON File Obfuscation: * Obfuscate the configuration files used by the mobile application by converting JSON files into a binary format on both Android and iOS platforms.

Exploits
Credits
finder
Billy Rios of the Exploit Development Team - QED Secure Solutions
finder
Jesse Young of the Exploit Development Team - QED Secure Solutions
finder
Brandon Rothel of the Exploit Development Team - QED Secure Solutions
finder
Jonathan Butts of the Exploit Development Team - QED Secure Solutions
finder
Henri Hein of the Exploit Development Team - QED Secure Solutions
finder
Justin Boling of the Exploit Development Team - QED Secure Solutions
finder
Nick Kulesza of the Exploit Development Team - QED Secure Solutions
finder
Ken Natividad of the Exploit Development Team - QED Secure Solutions
finder
Carl Schuett of the Exploit Development Team - QED Secure Solutions
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-364-01
government-resource
Hyperlink: https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-364-01
Resource:
government-resource
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found