CVE-2025-40841

Medium CVSS: 5.1

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a
Cross-Site Request Forgery (CSRF) vulnerability which, if exploited, can lead
to unauthorized modification of certain information.

Vendor

Ericsson

Product

Indoor Connect 8855 Firmware

CWE

CWE-352

Yayın Tarihi

2026-03-25 14:16:30

Güncelleme

2026-03-27 18:29:38

Source Identifier

85b1779b-6ecd-4f52-bcc5-73eac4659dcf

KEV Date Added

Kategoriler

CWE-352 Indoor Connect 8855 Firmware MEDIUM Ericsson 2026

Referanslar

https://www.ericsson.com/en/about-us/security/psirt/CVE-2025-40841 https://www.ericsson.com/en/about-us/security/psirt/security-bulletin-indoorconnect-march-2026

Benzer Kayıtlar

High

CVE-2025-27260

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains an Improper Filtering of Special Elements vulnerability…

High

CVE-2025-40842

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Scripting (XSS) vulnerability which, if exp…

Medium

CVE-2025-40843

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy.…

Medium

CVE-2025-27258

Ericsson Network Manager (ENM) versions prior to ENM 25.1 GA contain a vulnerability, if exploited, can result in an esc…

Low

CVE-2025-27259

Ericsson Network Manager versions prior to ENM 25.2 GA contain a vulnerability that, if exploited, can exfiltrate limite…

High

CVE-2025-40836

Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can allow an attacke…