Description
Cleartext storage and exposure of WPA2 credentials, and missing authentication on the rr/wr memory read/write commands, in the unauthenticated UART debug console of the Tenda N300 F3 (V603) allow a physically proximate attacker to obtain stored WPA2 credentials in cleartext and to read or write arbitrary memory via the serial console.
Published: 2026-06-26
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows a physically proximate attacker to read and write arbitrary memory via the UART debug console due to missing authentication and to obtain stored WPA2 credentials in cleartext. This exposes sensitive network credentials and can lead to unauthorized configuration changes or compromise of the device’s firmware. The weakness involves improper handling of authentication and insecure storage of sensitive information, which can undermine both confidentiality and integrity of the system.

Affected Systems

The affected product is the Tenda N300 F3 (V603), a consumer Wi‑Fi router released by Tenda. No other vendor or product versions are listed as impacted in the available data.

Risk and Exploitability

The exploit requires physical proximity to the device’s serial interface. However, once accessed, the attacker can read or write any memory location, potentially enabling arbitrary code execution or data exfiltration. The CVSS score is not provided, and there is no EPSS availability, but the lack of authentication and cleartext credential storage vulnerability. It is not listed in the CISA KEV catalog.

Generated by OpenCVE AI on June 26, 2026 at 22:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Disable the UART debug console or restrict physical access to the serial port
  • Apply the latest official firmware update that encrypts stored WPA2 credentials and adds authentication to UART commands
  • Physically secure or lock the router to prevent unauthorized access to its serial interface

Generated by OpenCVE AI on June 26, 2026 at 22:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 23:00:00 +0000

Type Values Removed Values Added
Title Cleartext WLAN Credentials Exposure and UART Memory Manipulation
Weaknesses CWE-200
CWE-285
CWE-311

Fri, 26 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Description Cleartext storage and exposure of WPA2 credentials, and missing authentication on the rr/wr memory read/write commands, in the unauthenticated UART debug console of the Tenda N300 F3 (V603) allow a physically proximate attacker to obtain stored WPA2 credentials in cleartext and to read or write arbitrary memory via the serial console.
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-06-26T20:55:31.076Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-38571

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T22:45:05Z

Weaknesses
  • CWE-200

    Exposure of Sensitive Information to an Unauthorized Actor

  • CWE-285

    Improper Authorization

  • CWE-311

    Missing Encryption of Sensitive Data