← Back to home
ICSMA-25-364-01  ·  Published 2026-03-24  ·  View on CISA ICS-CERT ↗

WHILL Model C2 Electric Wheelchairs and Model F Power Chairs (Update A)

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of this vulnerability could allow an attacker within Bluetooth range to take control over the product.

CVEs (1)

Remediations

  • WHILL has released Model C2: HMI v2.24. This firmware includes a modification to disable the BLE interface after installation.
  • WHILL has released Model F: HMI v2.25. This firmware includes a modification to disable the BLE interface after installation.
  • For more information, contact WHILL Inc. (https://whill.inc/us/contact/)

Affected Vendors

WHILL Inc.

Affected Products (2)

WHILL Inc. · Model C2 Electric WheelChair vers:all/*
WHILL Inc. · Model F Power Chair vers:all/*

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more