top of page
perceptive_background_267k.jpg

A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential c…

Published:

23 April 2026 at 22:00:00

Alert date:

24 April 2026 at 15:07:56

Source:

nvd.nist.gov

Click to open the original link from this advisory

Mobile & IoT, Identity & Access

A vulnerability exists in SenseLive X3050's web management interface where password updates are not reliably applied due to improper handling of credential changes on the backend. After factory restore using SenseLive Config 2.0 tool, the interface may indicate successful password updates but the system continues to accept previous or default credentials. The password-change process is not consistently enforced, and even after factory reset, password changes may fail to propagate correctly. This creates a significant authentication bypass vulnerability that could allow unauthorized access using old credentials.

Technical details

Mitigation steps:

Affected products:

SenseLive X3050

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-39462
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-111-12.json
https://senselive.io/contact
https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page