CVE-2026-50099

MEDIUM

Naxclow IoT Platform Insertion of sensitive information into Externally-Accessible file or directory

Title source: cna

Description

During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits arbitrary memory reads, enabling full firmware extraction. An attacker with brief physical access, common for outdoor-mounted devices, can therefore recover WiFi credentials and bootstrap firmware-side attacks.

References (2)

Core 2

Core References

https://www.cisa.gov/news-events/ics-advisories/icsa-26-162-02

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-162-02.json

View Writeup ZIP pw:eip

Scores

CVSS v3 4.6

EPSS 0.0015

EPSS Percentile 4.5%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-538

Status published

Products (4)

Naxclow/ix cam All

Naxclow/Smart Doorbell X3 All

Naxclow/V720 All

Naxclow/X Smart Home All

Published Jun 12, 2026

Tracked Since Jun 13, 2026