CVE-2026-27841

Name of the Vulnerable Software and Affected Versions SenseLive X3050 (affected versions not specified)

Description The web management interface lacks proper Cross-Site Request Forgery (CSRF) protections, which is a flaw where a web application does not verify that a request was intentionally initiated by the user. The application fails to enforce server-side validation of request origin or implement CSRF tokens, allowing a malicious external webpage to trigger unauthorized state-changing configuration requests via a user's browser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.