CVE-2026-30613

MEDIUM CVSS 4.6 View on NVD ↗

Description

An information disclosure vulnerability exists in AZIOT 1 Node Smart Switch (16amp)- WiFi/Bluetooth Enabled Software Version: 1.1.9 due to improper access control on the UART debug interface. An attacker with physical access can connect to the UART interface and obtain sensitive information from the serial console without authentication.

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References

http://aziot.com
https://github.com/dumbermore/tuya/blob/main/README.md

Published: Apr 06, 2026 18:16 UTC Modified: Apr 07, 2026 15:17 UTC