Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
6DescriptionCVE.org
A vulnerability exists in SenseLive X3050's web management interface that allows critical configuration parameters to be modified without sufficient authentication or server-side validation. By applying unsupported or disruptive values to recovery mechanisms and network settings, an attacker can induce a persistent lockout state. Because the device lacks a physical reset button, recovery requires specialized technical access via the console to perform a factory reset, resulting in a total denial-of-service for the gateway and its connected RS-485 downstream systems.
AnalysisAI
Remote unauthenticated attackers can permanently disable SenseLive X3050 industrial gateways and connected RS-485 downstream systems by modifying critical configuration parameters through the web management interface. The device's lack of physical reset button forces specialized console-based factory reset procedures, making this a high-impact operational disruption vector for industrial environments. CISA ICS-CERT has issued an advisory (ICSA-26-111-12), indicating industrial sector awareness of this authentication bypass flaw.
Technical ContextAI
The SenseLive X3050 is an industrial IoT gateway managing RS-485 downstream systems, typically used in SCADA and building automation environments. The vulnerability stems from CWE-306 (Missing Authentication for Critical Function), where the web management interface fails to enforce authentication checks before accepting configuration changes to recovery mechanisms and network settings. The CVSS 4.0 vector shows network-accessible (AV:N), low complexity (AC:L), no privileges required (PR:N), indicating the configuration endpoints are exposed without authentication wrappers or CSRF protections. The VI:H (High Integrity Impact on Vulnerable system) and VA:H (High Availability Impact on Vulnerable system) ratings reflect direct modification of device state and induced lockout condition, while SA:H (High Availability Impact on Subsequent systems) captures cascading failure of RS-485 connected devices.
RemediationAI
Immediately isolate SenseLive X3050 web management interfaces from untrusted networks by restricting access to dedicated management VLANs or VPN-only access. Implement firewall rules blocking external access to the device's HTTP/HTTPS management ports (typically TCP 80/443) and permit connections only from authorized administrator IP addresses. Contact SenseLive directly via https://senselive.io/contact to obtain patched firmware or compensating control guidance, as no public patch version is identified in available advisories. For devices already in lockout state, recovery requires console cable access to perform factory reset - document and test this recovery procedure before widespread deployment. Deploy network intrusion detection signatures monitoring for unusual HTTP POST requests to X3050 configuration endpoints, particularly from non-management source addresses. Consider replacing X3050 gateways in critical infrastructure roles if vendor cannot provide timely authenticated management interface update. Note that network isolation trades operational convenience for security - remote management capabilities will be restricted pending authentication fix.
Unauthenticated remote attackers can retrieve and replace firmware on SenseLive X3050 industrial control devices via the
SenseLive X3050's embedded management service grants full administrative control to unauthenticated remote attackers. Th
Client-side authentication bypass in SenseLive X3050's web management interface allows remote unauthenticated attackers
Authentication bypass in SenseLive X3050 web management interface allows remote unauthenticated attackers to gain admini
Unauthenticated network discovery in SenseLive X3050 management ecosystem exposes device presence, identifiers, and mana
Cross-Site Request Forgery in SenseLive X3050's web management interface enables authenticated attackers to force victim
Unauthorized configuration tampering in SenseLive X3050 web management interface allows authenticated attackers to set c
SenseLive X3050 web management interface transmits all administrative communication including authentication credentials
Same technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-25354
GHSA-7pfm-4rh7-6vp4