PT-2026-52977 · Undefined · Undefined

Published

2026-06-26

Updated

2026-06-26

CVE-2026-38571

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Cleartext storage and exposure of WPA2 credentials, and missing authentication on the rr/wr memory read/write commands, in the unauthenticated UART debug console of the Tenda N300 F3 (V603) allow a physically proximate attacker to obtain stored WPA2 credentials in cleartext and to read or write arbitrary memory via the serial console.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-38571

Affected Products

Undefined

PT-2026-52977 · Undefined · Undefined

CVE-2026-38571

Related Identifiers

Affected Products

References · 2