See857

**Name of the Vulnerable Software and Affected Versions** Ilevia EVE X1 Server Firmware versions prior to v4.7.18.0.eden Ilevia EVE Logic versions prior to v6.00 - 2025 07 21 **Description** A Cross Site Request Forgery (CSRF) issue exists in the /bh web backend component. This allows a remote attacker to potentially execute arbitrary code. **Recommendations** Update Ilevia EVE X1 Server Firmware to version v4.7.18.0.eden or later. Update Ilevia EVE Logic to version v6.00 - 2025 07 21 or later.