PT-2025-49110 · Waveshare · Waveshare Rs232/485 To Wifi Eth (B) Serial To Ethernet/Wi-Fi Gateway
Published
2025-12-04
·
Updated
2025-12-05
·
CVE-2025-63363
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Firmware versions 3.1.1.0
Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway HW versions 4.3.2.1
Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Webpage versions 7.04T.07.002880.0301
Description
The device lacks Management Frame Protection, which allows attackers to execute de-authentication attacks. Specifically, crafted deauthentication and disassociation frames can be broadcast without authentication or encryption.
Recommendations
Update Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Firmware to a version with Management Frame Protection enabled.
Update Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway HW to a version with Management Frame Protection enabled.
Update Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Webpage to a version with Management Frame Protection enabled.
Exploit
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Waveshare Rs232/485 To Wifi Eth (B) Serial To Ethernet/Wi-Fi Gateway