VYPR
Unrated severityNVD Advisory· Published Nov 20, 2025· Updated Nov 21, 2025

CVE-2025-60737

CVE-2025-60737

Description

Cross Site Scripting vulnerability in Ilevia EVE X1 Server Firmware Version<= 4.7.18.0.eden:Logic Version<=6.00 - 2025_07_21 allows a remote attacker to execute arbitrary code via the /index.php component

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Ilevia Srl./Eve X1/x5 Servercpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: firmware <= 4.7.18.0.eden, Logic <=6.00 (2025_07_21)

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.