Vulnerabilities

CVE-2025-34513

by Fred · 16/10/2025

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an OS command injection vulnerability in mbus_build_from_csv.php that allows an unauthenticated attacker to execute arbitrary code. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet.

More information : https://www.ilevia.com/

Similar

Tags: Cybersecurity Alert