Cleartext Storage Vulnerability in Tenda N300 F3 by Tenda
CVE-2026-38571
4.6MEDIUM
What is CVE-2026-38571?
The Tenda N300 F3 (V603) contains a vulnerability where WPA2 credentials are stored in cleartext and can be accessed through the unauthenticated UART debug console. This allows a nearby attacker to exploit the debug console to obtain sensitive network credentials, as well as perform arbitrary read and write operations in memory. The lack of authentication further exacerbates the risk, enabling potential physical attackers to compromise device integrity and network security.