Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not present, allow memory read access via a Spectra attack.
The product stores sensitive information without properly limiting read or write access by unauthorized actors.