Primary

Context

SenseLive X3050 Unauthenticated Device Discovery Vulnerability

Vulnerability

A vulnerability in the SenseLive X3050 management ecosystem allows for the unauthenticated discovery of deployed units via the vendor's management protocol. This exposure enables the identification of device presence, unique identifiers, and management interfaces without the need for credentials. The discovery functions are accessible through the underlying service without authentication, allowing an attacker on the same network segment to quickly enumerate targeted devices.

Impact

Exploitation of this vulnerability could lead to unauthorized discovery and enumeration of devices, including their management interfaces and identifiers.

Remediation

SenseLive has not responded to CISA's requests for coordination. Affected users are encouraged to contact SenseLive for more information.

Added: Apr 24, 2026, 12:44 AM

Updated: Apr 24, 2026, 12:44 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.9

remediation

0.0

relevance

6.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.9

remediation

0.0

relevance

6.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SenseLive X3050 Unauthenticated Device Discovery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating