Lucene search
K

85 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/23 11:54 p.m.2 views

CVE-2026-27843

A vulnerability exists in SenseLive X3050's web management interface that allows critical configuration parameters to be modified without sufficient authentication or server-side validation. By applying unsupported or disruptive values to recovery mechanisms and network settings, an attacker can...

9.2CVSS5.7AI score0.00518EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/23 11:54 p.m.29 views

CVE-2026-27843 SenseLive X3050 Missing authentication for critical function

A vulnerability exists in SenseLive X3050's web management interface that allows critical configuration parameters to be modified without sufficient authentication or server-side validation. By applying unsupported or disruptive values to recovery mechanisms and network settings, an attacker can...

9.2CVSS0.00518EPSS
Exploits0References3
CVE
CVE
added 2026/04/23 11:54 p.m.12 views

CVE-2026-27843

SenseLive X3050 is affected by CVE-2026-27843, where the web management interface permits modification of critical configuration parameters without sufficient authentication or server-side validation. By feeding unsupported or disruptive values to recovery mechanisms and network settings, an atta...

9.2CVSS5.7AI score0.00518EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/23 11:52 p.m.37 views

CVE-2026-39462 SenseLive X3050 Insufficiently Protected Credentials

A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device undergoes a factory restore using the SenseLive Config 2.0 tool, the interface may indicate that...

9.3CVSS0.0038EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:52 p.m.4 views

CVE-2026-39462

A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device undergoes a factory restore using the SenseLive Config 2.0 tool, the interface may indicate that...

9.3CVSS5.8AI score0.0038EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/23 11:52 p.m.4 views

CVE-2026-39462 SenseLive X3050 Insufficiently Protected Credentials

A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device undergoes a factory restore using the SenseLive Config 2.0 tool, the interface may indicate that...

9.3CVSS5.3AI score0.0038EPSS
Exploits0References3
CVE
CVE
added 2026/04/23 11:52 p.m.20 views

CVE-2026-39462

CVE-2026-39462 affects SenseLive X3050, where the web management interface fails to reliably apply password changes due to backend credential handling. After factory restore with SenseLive Config 2.0, the UI may indicate a successful password update while the system continues to accept previous o...

9.3CVSS5.8AI score0.0038EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/23 11:50 p.m.34 views

CVE-2026-35503 SenseLive X3050 Use of Hard-coded Credentials

A vulnerability in SenseLive X3050’s web management interface allows authentication logic to be performed entirely on the client side, relying on hardcoded values within browser-executed scripts rather than server-side verification. An attacker with access to the login page could retrieve these...

9.8CVSS0.00548EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/23 11:50 p.m.3 views

CVE-2026-35503 SenseLive X3050 Use of Hard-coded Credentials

A vulnerability in SenseLive X3050’s web management interface allows authentication logic to be performed entirely on the client side, relying on hardcoded values within browser-executed scripts rather than server-side verification. An attacker with access to the login page could retrieve these...

9.8CVSS5.4AI score0.00548EPSS
Exploits0References3
CVE
CVE
added 2026/04/23 11:50 p.m.16 views

CVE-2026-35503

SenseLive X3050 vulnerable via its web management interface: authentication is performed client-side using hardcoded values in browser-executed scripts, enabling an attacker with access to the login page to retrieve exposed parameters and gain unauthorized administrative access. Base scores are C...

9.8CVSS5.7AI score0.00548EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:50 p.m.2 views

CVE-2026-35503

A vulnerability in SenseLive X3050’s web management interface allows authentication logic to be performed entirely on the client side, relying on hardcoded values within browser-executed scripts rather than server-side verification. An attacker with access to the login page could retrieve these...

9.8CVSS5.7AI score0.00548EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/23 11:48 p.m.4 views

CVE-2026-25720 SenseLive X3050 Insufficient session expiration

A vulnerability exists in SenseLive X3050’s web management interface due to improper session lifetime enforcement, allowing authenticated sessions to remain active for extended periods without requiring re-authentication. An attacker with access to a previously authenticated session could continu...

6.9CVSS5.3AI score0.00283EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/23 11:48 p.m.29 views

CVE-2026-25720 SenseLive X3050 Insufficient session expiration

A vulnerability exists in SenseLive X3050’s web management interface due to improper session lifetime enforcement, allowing authenticated sessions to remain active for extended periods without requiring re-authentication. An attacker with access to a previously authenticated session could continu...

6.9CVSS0.00283EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:48 p.m.3 views

CVE-2026-25720

A vulnerability exists in SenseLive X3050’s web management interface due to improper session lifetime enforcement, allowing authenticated sessions to remain active for extended periods without requiring re-authentication. An attacker with access to a previously authenticated session could continu...

6.9CVSS5.8AI score0.00283EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/23 11:48 p.m.23 views

CVE-2026-25720

CVE-2026-25720 affects SenseLive X3050 via its web management interface, where improper session lifetime enforcement allows authenticated sessions to remain active longer than intended, enabling continued interaction with administrative functions after legitimate activity ceases. This is describe...

6.9CVSS5.8AI score0.00283EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:45 p.m.3 views

CVE-2026-40630

A vulnerability in SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact...

9.8CVSS5.7AI score0.00712EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/23 11:45 p.m.28 views

CVE-2026-40630 SenseLive X3050 Authentication bypass using an alternate path or channel

A vulnerability in SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact...

9.8CVSS0.00712EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/23 11:45 p.m.4 views

CVE-2026-40630 SenseLive X3050 Authentication bypass using an alternate path or channel

A vulnerability in SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper access control enforcement. An attacker with network access to the device may be able to bypass the intended authentication mechanism and directly interact...

9.8CVSS5.3AI score0.00712EPSS
Exploits0References3
CVE
CVE
added 2026/04/23 11:45 p.m.19 views

CVE-2026-40630

SenseLive X3050: a vulnerability in the web management interface allows an attacker with network access to bypass authentication and directly interact with sensitive configuration functions due to improper access control. Affected: SenseLive X3050 web management component; impact includes high co...

9.8CVSS5.7AI score0.00712EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.5 views

PT-2026-34808

A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device undergoes a factory restore using the SenseLive Config 2.0 tool, the interface may indicate that...

9.3CVSS5.8AI score0.0038EPSS
Exploits0References5
Rows per page
Query Builder