WPair – Scanner Tool to Detect WhisperPair Flaw in Google’s Fast Pair Protocol

WPair documents and demonstrates CVE-2025-36911 (WhisperPair), a critical Fast Pair authentication-bypass affecting many Bluetooth audio devices; the Android app provides BLE discovery, non-invasive patch checks, and an exploit demo that can enable unauthorized pairing, microphone access, live audio streaming, recording, and persistent device tracking, while vendors are issuing patches following disclosure.