What is CVE-2026-40630?

CVE-2026-40630 is a critical-severity vulnerability in Senselive X3050, classified under Authentication Bypass Using an Alternate Path or Channel. CVSS score: 9.8/10. Published 2026-04-24.

How severe is CVE-2026-40630?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Vulnerability in Senselive X3050

CVE-2026-40630

A vulnerability in SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass…

EPSS: 0.002 (35.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Senselive X3050 — versions V1.523
Senselive X3500
Senselive X3500_firmware — versions 1.523

Weakness classification (CWE)

CWE-288 — Authentication Bypass Using an Alternate Path or Channel

References

ics-cert@hq.dhs.gov (US Government Resource)
ics-cert@hq.dhs.gov (Third Party Advisory)
ics-cert@hq.dhs.gov (Product)

Frequently asked questions

What is CVE-2026-40630?: CVE-2026-40630 is a critical-severity vulnerability in Senselive X3050, classified under Authentication Bypass Using an Alternate Path or Channel. CVSS score: 9.8/10. Published 2026-04-24.
How severe is CVE-2026-40630?: Critical severity. CVSS v3 base score is 9.8 out of 10.