CVE-2026-38571

{"id": "CVE-2026-38571", "cveTags": [], "metrics": {}, "affected": [{"source": "cve@mitre.org", "affectedData": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}]}], "published": "2026-06-26T22:16:31.860", "references": [{"url": "https://github.com/ZEssaidi-CS/Vulnerability-research/tree/main/CVE-2026-38571", "source": "cve@mitre.org"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "Cleartext storage and exposure of WPA2 credentials, and missing authentication on the rr/wr memory read/write commands, in the unauthenticated UART debug console of the Tenda N300 F3 (V603) allow a physically proximate attacker to obtain stored WPA2 credentials in cleartext and to read or write arbitrary memory via the serial console."}], "lastModified": "2026-06-26T22:16:31.860", "sourceIdentifier": "cve@mitre.org"}