CNNVD-202509-3977 Information
CNNVD ID
CNNVD-202509-3977
Related CVE
- CNNVD Published: 2025-09-25
Description (Chinese)
Ericsson Indoor Connect是瑞典爱立信(Ericsson)公司的一款室内小型基站。 Ericsson Indoor Connect 8855版本存在安全漏洞,该漏洞源于命令注入漏洞,可能导致完整性破坏和机密性泄露,以及未经授权的用户和配置数据披露和修改,还可能执行特权命令、影响服务可用性以及修改系统文件和配置数据。
Description (English)
Ericsson Indoor Conect is a small, indoor base station for Ericsson in Sweden. There is a security loophole in the Ericsson Indoor Conect 8855 version, which stems from a command-infusion loophole that may lead to integrity damage and confidential disclosure, as well as unauthorized user and configuration data disclosure and modification, as well as the enforcement of privilege orders, disruption of service availability and modification of system files and configuration data.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
爱立信
Published
2025-09-25
Last Modified
2026-02-24
References
https://www.ericsson.com/en/about-us/security/psirt/e2025-09-25
Patch
https://www.ericsson.com/en/about-us/security/psirt/e2025-09-25
Share on: