How severe is CVE-2025-34516?

CVE-2025-34516 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-34516

Name: eve_x1_server
Author: ilevia

9.8CRITICAL

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to servic

发布于: 10/16/2025更新于: 11/3/2025

描述

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a use of default credentials vulnerability that allows an unauthenticated attacker to obtain remote access. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet.

AI分析AI驱动

受影响产品

ileviaeve_x1_server_firmware

ileviaeve_x1_server

参考资料

https://www.ilevia.com/
Product
https://www.vulncheck.com/advisories/ilevia-eve-x1-server-use-of-default-credentials
Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5963.php