CVE-2026-40623 - Vulnerability Analysis
HighCVSS: 8.1Last Updated: April 24, 2026
SenseLive X3050 - Broken Access Control
Published: April 24, 2026Updated: April 24, 2026Remote Exploitable
Overview
SenseLive X3050 contains a broken access control vulnerability caused by insufficient validation and safety controls on critical system and network configuration parameters, letting attackers modify core device behavior and cause denial of service, exploit requires access to the web management interface.
Severity & Score
Severity: High
CVSS Score: 8.1
Impact
Attackers can destabilize device operation or cause persistent unavailability, impacting network reliability and device functionality.
Mitigation
Update to the latest version with proper validation and safety controls.
References
Related Resources
Details
- CVE ID
- CVE-2026-40623
- Severity
- High
- CVSS Score
- 8.1
- Type
- broken_access_control
- Status
- new
CWE
- CWE-862
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H