CVE-2026-30613: An information disclosure vulnerability exists in AZIOT 1 Node Smart Switch (16amp)- WiFi/Bluetooth Enabled...
An information disclosure vulnerability exists in AZIOT 1 Node Smart Switch (16amp)- WiFi/Bluetooth Enabled Software Version: 1.1.9 due to improper access control on the UART debug interface. An attacker with physical access can connect to the UART interface and obtain sensitive information from the serial console without authentication.
Security readout for executives and security teams
Plain-English summary
CVE-2026-30613 affects the AZIOT 1 Node Smart Switch, software version 1.1.9. Someone with physical access may use the device’s UART debug interface to read sensitive serial-console information without authentication. This is mainly a device-access and tampering risk, not a remote internet-exploitation issue based on the available sources.
Executive priority
Treat as moderate priority. It is not described as remotely exploitable, but it can expose sensitive information if an attacker can handle the device. Prioritize environments where devices are physically accessible to outsiders, contractors, tenants, or untrusted users.
Technical view
The CVE describes CWE-200 information disclosure caused by improper access control on a UART debug interface. CVSS 3.1 is 4.6: physical access required, low complexity, no privileges or user interaction, high confidentiality impact, no integrity or availability impact. Public affected-product metadata is sparse beyond the description naming AZIOT 1 Node Smart Switch version 1.1.9.
Likely exposure
Exposure is most likely where these smart switches are deployed in accessible locations, returned devices, labs, shared facilities, or supply-chain handling environments. Remote-only attackers are not indicated by the CVSS vector or description.
Exploitation context
No active exploitation is indicated in the provided sources, and the CVE is not listed as KEV. Exploitation requires physical access to the device and access to the UART debug interface. The sources do not describe a patch, exploit tooling, or broader affected versions.
Researcher notes
The record provides limited public detail: one GitHub reference, no named vendor in affected metadata, and no remediation statement. Analysis should remain bounded to physical UART information disclosure on the named device/version unless additional vendor documentation expands scope.
Mitigation direction
Identify whether AZIOT 1 Node Smart Switch version 1.1.9 is deployed.
Restrict physical access to installed switches and stored inventory.
Check vendor or maintainer guidance for firmware updates or official remediation.
Avoid redeploying returned or untrusted devices without inspection.
Document compensating controls where firmware remediation is unavailable.
Validation and detection
Inventory devices by model and software version.
Verify whether devices match AZIOT 1 Node Smart Switch version 1.1.9.
Inspect deployment locations for realistic physical-access exposure.
Review vendor advisories or product support channels for updates.
Record whether compensating physical controls are in place.
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cwe · medium confidence lookup
CWE-200: Information exposure and cloud metadata lookup
Information exposure and SSRF weaknesses can make discovery, cloud metadata, and credential material review relevant. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
CWE-200 · source CWE mapping
Exposure of Sensitive Information to an Unauthorized Actor
Exposure of Sensitive Information to an Unauthorized Actor represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.