Critical severity9.8NVD Advisory· Published Apr 24, 2026· Updated Jun 16, 2026
CVE-2026-25775
CVE-2026-25775
Description
A vulnerability in SenseLive X3050’s remote management service allows firmware retrieval and update operations to be performed without authentication or authorization. The service accepts firmware-related requests from any reachable host and does not verify user privileges, integrity of uploaded images, or the authenticity of provided firmware.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3News mentions
1- SenseLive X3050CISA Alerts