cvedb.io
CVE-2026-40630
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2026-04-24T00:16:29.040 · Last modified 2026-06-17T10:45:33.243

Summary

A vulnerability in  SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact with sensitive configuration functions.

Affected products

senselive — x3500_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when senselive ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.