ГлавнаяУязвимости → CVE-2026-40630
9.8критическая

CVE-2026-40630

Описание

A vulnerability in  SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact with sensitive configuration functions.

Затрагиваемое ПО
Senselive X3500 firmwareSenselive X3500
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-111-12.jsonhttps://senselive.io/contacthttps://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12