VYPR
Unrated severityNVD Advisory· Published Sep 16, 2025· Updated Mar 23, 2026

Ilevia EVE X1 Server 4.7.18.0.eden Unauthenticated File Disclosure

CVE-2025-34185

Description

Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a pre-authentication file disclosure vulnerability via the 'db_log' POST parameter. Remote attackers can retrieve arbitrary files from the server, exposing sensitive system information and credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.