CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-60739

Cross Site Request Forgery (CSRF) vulnerability in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before, Logic Version v6.00 - 2025_07_21 allows a remote attacker to execute arbitrary code via the /bh_web_backend component

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.1%

CVSS Severity

CVSS v3 Score 9.6

References

https://github.com/iSee857/ilevia-EVE-X1-Server-CSRF

Products affected by CVE-2025-60739

Ilevia » Eve X1 Server » Version: N/A

cpe:2.3:h:ilevia:eve_x1_server:-
Ilevia » Eve X1 Server Firmware » Version: 4.7.18.0

cpe:2.3:o:ilevia:eve_x1_server_firmware:4.7.18.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-60739

Products

Pricing

Contact Us