A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadcast without authentication or encryption.
References
| Link | Resource |
|---|---|
| https://drive.google.com/file/d/1AGv9KWMTB71NJfIOncuNO6FyK0UAqxmL/view?usp=sharing | Exploit Third Party Advisory |
| https://otsecverse.github.io/OTSecVerse/posts/Post-3/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
16 Dec 2025, 20:57
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://drive.google.com/file/d/1AGv9KWMTB71NJfIOncuNO6FyK0UAqxmL/view?usp=sharing - Exploit, Third Party Advisory | |
| References | () https://otsecverse.github.io/OTSecVerse/posts/Post-3/ - Third Party Advisory | |
| First Time |
Waveshare rs232\/485 To Wifi Eth \(b\) Firmware
Waveshare rs232\/485 To Wifi Eth \(b\) Waveshare |
|
| CPE | cpe:2.3:o:waveshare:rs232\/485_to_wifi_eth_\(b\)_firmware:3.1.1.0:*:*:*:*:*:*:* cpe:2.3:h:waveshare:rs232\/485_to_wifi_eth_\(b\):4.3.2.1:*:*:*:*:*:*:* |
05 Dec 2025, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-284 CWE-300 |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
04 Dec 2025, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-12-04 18:15
Updated : 2025-12-16 20:57
NVD link : CVE-2025-63363
Mitre link : CVE-2025-63363
CVE.ORG link : CVE-2025-63363
JSON object : View
Products Affected
waveshare
- rs232\/485_to_wifi_eth_\(b\)
- rs232\/485_to_wifi_eth_\(b\)_firmware