CISA ICS-CERT published advisory ICSA-26-111-12 disclosing 11 vulnerabilities in SenseLive X3050 industrial IoT gateways (firmware V1.523). The highest-severity flaw (CVE-2026-40630, CVSS 9.8) enables authentication bypass on the web management interface, potentially allowing an attacker to take complete control of the device. Vulnerabilities include hardcoded credentials, insufficient session expiration, cleartext transmission of sensitive data, and missing authentication for critical functions. SenseLive did not respond to CISA's coordination requests; no vendor patch is available. Affected users in critical manufacturing, water/wastewater, and energy sectors are advised to contact SenseLive directly.