CNNVD-202511-2751 Information

CNNVD ID

CNNVD-202511-2751

Related CVE

CVE-2025-60739

• CNNVD Published: 2025-11-25

Description (Chinese)

Ilevia EVE X1 Server是意大利Ilevia公司的一款智能家居与楼宇自动化。 Ilevia EVE X1 Server v4.7.18.0.eden及之前版本存在安全漏洞，该漏洞源于bh_web_backend组件跨站请求伪造，可能导致任意代码执行。

Description (English)

Ilevia EVE X1 Server is an intelligent home and building automation for Ilevia in Italy. Ilevia X1 Server v. 4.7.18.0.eden and its previous versions had a security loophole, which originated from a request for forgery across the bh web backend component and could lead to arbitrary code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Ilevia

Published

2025-11-25

Last Modified

2026-02-24

References

https://github.com/iSee857/ilevia-EVE-X1-Server-CSRF https://access.redhat.com/security/cve/cve-2025-60739