How severe is CVE-2025-34516?

CVE-2025-34516 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-34516

Name: eve_x1_server
Author: ilevia

9.8CRITICAL

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to servic

Published: 10/16/2025Updated: 11/3/2025

Description

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet.

AI AnalysisPowered by AI

Affected Products

ileviaeve_x1_server_firmware

ileviaeve_x1_server

References

https://www.ilevia.com/
Product
https://www.vulncheck.com/advisories/ilevia-eve-x1-server-use-of-default-credentials
Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5963.php