CNNVD-202509-3974 Information

CNNVD ID

CNNVD-202509-3974

Related CVE

CVE-2025-40836

• CNNVD Published: 2025-09-25

Description (Chinese)

Ericsson Indoor Connect是瑞典爱立信（Ericsson）公司的一款室内小型基站。 Ericsson Indoor Connect 8855版本存在安全漏洞，该漏洞源于输入验证不当，可能导致完整性和机密性丧失、未经授权的用户和配置数据泄露和修改、权限提升、服务可用性受影响以及系统文件和配置数据被修改。

Description (English)

Ericsson Indoor Conect is a small, indoor base station for Ericsson in Sweden. There is a security loophole in the Ericsson Indoor Connect 8855 version, which results from inappropriate input validation, which may result in loss of integrity and confidentiality, unauthorized data leaks and modifications to users and configurations, increased privileges, service availability and system files and configuration data.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

爱立信

Published

2025-09-25

Last Modified

2026-02-24

References

https://www.ericsson.com/en/about-us/security/psirt/e2025-09-25

Patch

https://www.ericsson.com/en/about-us/security/psirt/e2025-09-25