Security Advisory

CVE-2026-27843

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-23 23:54:55
Last updated 2026-04-24 13:10:40
Assigner icscert
State PUBLISHED

Description

A vulnerability exists in SenseLive X3050s web management interface that allows critical configuration parameters to be modified without sufficient authentication or server-side validation. By applying unsupported or disruptive values to recovery mechanisms and network settings, an attacker can induce a persistent lockout state. Because the device lacks a physical reset button, recovery requires specialized technical access via the console to perform a factory reset, resulting in a total denial-of-service for the gateway and its connected RS-485 downstream systems.