How severe is CVE-2025-34516?

CVE-2025-34516 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-34516

Name: eve_x1_server
Author: ilevia

9.8CRITICAL

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to servic

Publicado: 10/16/2025Actualizado: 11/3/2025

Descripción

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet.

Análisis IAImpulsado por IA

Productos Afectados

ileviaeve_x1_server_firmware

ileviaeve_x1_server

Referencias

https://www.ilevia.com/
Product
https://www.vulncheck.com/advisories/ilevia-eve-x1-server-use-of-default-credentials
Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5963.php