Critical severity9.8NVD Advisory· Published Apr 24, 2026· Updated Apr 28, 2026
CVE-2026-40630
CVE-2026-40630
Description
A vulnerability in SenseLive
X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact with sensitive configuration functions.
Affected products
1- cpe:2.3:o:senselive:x3500_firmware:1.523:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-111-12.jsonnvdThird Party Advisory
- senselive.io/contactnvdProduct
- www.cisa.gov/news-events/ics-advisories/icsa-26-111-12nvdUS Government Resource
News mentions
1- SenseLive X3050CISA Alerts