CVE-2025-34515 Ilevia EVE X1 Server 4.7.18.0.eden Root Privilege Escalation

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary privileges vulnerability in syncproject.sh that allows an attacker to escalate privileges to root. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to...

CVE-2025-34515

The CVE-2025-34515 entry concerns Ilevia EVE X1/X5 Server firmware ≤ 4.7.18.0.eden where a misconfigured or vulnerable sync_project.sh script enables an attacker to escalate privileges to root. Publicly reported details from multiple sources (PacketStorm PoC references for Ilevia EVE X1/X5 Server...

Ilevia EVE X1 Server 安全漏洞

Ilevia EVE X1 Server is a smart home and building automation from Ilevia, Italy. A security vulnerability exists in Ilevia EVE X1 Server 4.7.18.0.eden and earlier versions, which stems from an unnecessary privileged execution in syncproject.sh that could lead to elevated privileges...