CVE-2025-34187
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-16

Last updated on: 2025-09-25

Assigner: VulnCheck

Description
Ilevia EVE X1/X5 Server version ≀ 4.7.18.0.eden contains a misconfiguration in the sudoers file that allows passwordless execution of certain Bash scripts. If these scripts are writable by web-facing users or accessible via command injection, attackers can replace them with malicious payloads. Execution with sudo grants full root access, resulting in remote privilege escalation and potential system compromise.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-16
Last Modified
2025-09-25
Generated
2026-06-16
AI Q&A
2025-09-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-34187
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
ilevia eve_x1_server_firmware to 4.7.18.0 (inc)
ilevia eve_x1_server *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
CWE-269 The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-34187 is a vulnerability in Ilevia EVE X1/X5 Server version 4.7.18.0.eden caused by a misconfiguration in the sudoers file. This misconfiguration allows certain Bash scripts to be executed with sudo privileges without requiring a password. If these scripts are writable by web-facing users or accessible via command injection, an attacker can replace them with malicious code. When executed, this code runs with root privileges, enabling remote privilege escalation and full system compromise. [1, 2]

Impact Analysis

This vulnerability can allow remote attackers to gain full root access to the affected server without authentication. This leads to complete system compromise, including unauthorized access, control over system resources, potential denial of service, and the ability to execute arbitrary commands with the highest privileges. [1, 2]

Detection Guidance

To detect this vulnerability, you can check if the sudoers file on your Ilevia EVE X1/X5 Server (version ≀ 4.7.18.0.eden) allows passwordless execution of specific Bash scripts. Additionally, verify if these scripts are writable by the web-facing user (e.g., www-data). Commands to help detect this include: 1) Checking sudoers entries: sudo cat /etc/sudoers or sudo visudo -c to look for passwordless script execution rules; 2) Finding writable scripts by the web user: sudo -u www-data find /path/to/scripts -type f -perm -u+w; 3) Checking for suspicious processes or reverse shells using netstat or ss commands. Note that the exact script paths are not specified in the resources, so you may need to identify scripts allowed by sudo without password and check their permissions. [1]

Mitigation Strategies

Immediate mitigation steps include: 1) Removing or correcting the misconfigured sudoers entries that allow passwordless execution of Bash scripts; 2) Restricting write permissions on the vulnerable scripts so that web-facing users (e.g., www-data) cannot modify them; 3) Applying strict access controls and patching or upgrading the Ilevia EVE X1/X5 Server software if updates become available; 4) Monitoring for suspicious activity such as unexpected root shells or command injections. Since no vendor patch was available at disclosure, manual configuration hardening is critical. [1, 2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-34187. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart