ГлавнаяУязвимости → CVE-2025-34183
7.5высокая

CVE-2025-34183

Описание

Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a vulnerability in its server-side logging mechanism that allows unauthenticated remote attackers to retrieve plaintext credentials from exposed .log files. This flaw enables full authentication bypass and system compromise through credential reuse.

Затрагиваемое ПО
Ilevia Eve x1 server firmwareIlevia Eve x1 server
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://packetstorm.news/files/id/208700/https://www.ilevia.com/https://www.vulncheck.com/advisories/ilevia-eve-x1-server-credentials-leak-through-log-disclosurehttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5957.phphttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5957.php