CNNVD-202509-2316 Information

CNNVD ID

CNNVD-202509-2316

Related CVE

CVE-2025-34183

• CNNVD Published: 2025-09-16

Description (Chinese)

Ilevia EVE X1 Server是意大利Ilevia公司的一款智能家居与楼宇自动化。 Ilevia EVE X1 Server 4.7.18.0.eden及之前版本存在安全漏洞，该漏洞源于服务器端日志机制暴露明文凭据，可能导致身份验证绕过和系统破解。

Description (English)

Ilevia EVE X1 Server is an intelligent home and building automation for Ilevia in Italy. Ilevia EVE X1 Server 4.7.18.0.eden and previous versions had a security loophole, which stemmed from the server end log mechanism that exposed the certificate, which could lead to the identification being bypassed and the system broken.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Ilevia

Published

2025-09-16

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/ilevia-eve-x1-server-credentials-leak-through-log-disclosure https://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5957.php https://packetstorm.news/files/id/208700/ https://www.ilevia.com/ https://access.redhat.com/security/cve/cve-2025-34183