4 matches found
CVE-2025-34185
Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a pre-authentication file disclosure vulnerability via the 'dblog' POST parameter. Remote attackers can retrieve arbitrary files from the server, exposing sensitive system information and credentials...
CVE-2025-34185
Ilevia EVE X1 Server prior to 4.7.18.0.eden is affected by CVE-2025-34185, a pre-authentication file disclosure via the db_log POST parameter. Remote attackers can retrieve arbitrary files from the server, exposing sensitive system information and credentials. This is an unauthenticated disclosur...
PT-2025-38075
Name of the Vulnerable Software and Affected Versions: Ilevia EVE X1 Server versions prior to 4.7.18.0.eden Description: Ilevia EVE X1 Server versions prior to 4.7.18.0.eden contain a pre-authentication file disclosure issue via the db log POST parameter. Remote attackers can retrieve arbitrary...
📄 Ilevia EVE X1 Server 4.7.18.0.eden File Disclosure
Ilevia EVE X1 Server versions 4.7.18.0.eden and below suffer from an unauthenticated file disclosure vulnerability. Using the dblog POST parameter, attackers can disclose arbitrary files on the affected device and disclose sensitive and system information. Ilevia EVE X1 Server 4.7.18.0.eden dblog...