CVE-2026-38571

Vulnerability Description

Cleartext storage and exposure of WPA2 credentials, and missing authentication on the rr/wr memory read/write commands, in the unauthenticated UART debug console of the Tenda N300 F3 (V603) allow a physically proximate attacker to obtain stored WPA2 credentials in cleartext and to read or write arbitrary memory via the serial console.

Vulnerability Details

Published Date

June 26, 2026

Last Modified

June 26, 2026

Source

NVD

External References

https://github.com/ZEssaidi-CS/Vulnerability-research/tree/main/CVE-2026-38571

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment