Niix330

**Name of the Vulnerable Software and Affected Versions** EFM ipTIME A3004T version 14.19.0 **Description** A weakness exists in the Administrator Password Handler component of EFM ipTIME A3004T. The issue affects the `show debug screen` function within the `/sess-bin/timepro.cgi` file. Manipulation of the `aaksjdkfj` argument with the input `!@dnjsrureljrm*&` can lead to command injection. The attack can be carried out remotely, but is considered to have a rather high complexity and difficult exploitability. The exploit has been publicly released. The vendor was contacted regarding this disclosure but did not respond. **Recommendations** Versions prior to 14.19.0 are not affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ilevia EVE X1 Server versions up to 4.6.5.0.eden **Description** A command injection issue exists in Ilevia EVE X1 Server. The issue is related to the manipulation of an argument line in the file `/ajax/php/leaf search.php`. The attack can be initiated remotely and requires a high degree of complexity, but exploitability is considered difficult. The exploit has been publicly disclosed. The vendor confirms the issue and states that it is already solved on most devices and advises customers to close the port to the outside world. **Recommendations** Upgrade the affected component to a version later than 4.6.5.0.eden. Close the port to the outside world.