CVE-2025-27260 | THREATINT

Description

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains an Improper Filtering of Special Elements vulnerability which, if exploited, can lead to unauthorized modification of certain information

PUBLISHED Reserved 2025-02-21 | Published 2026-03-25 | Updated 2026-03-25 | Assigner ERIC

HIGH: 7.2CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-790

Product status

Default status

affected

Any version before 2025.Q3

affected

Credits

Telstra finder

References

www.ericsson.com/...curity-bulletin-indoorconnect-march-2026

www.ericsson.com/en/about-us/security/psirt/CVE-2025-27260

cve.org (CVE-2025-27260)

nvd.nist.gov (CVE-2025-27260)

Download JSON