Home
MEDIUM: 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:NDefault status
affected
Any version before 2025.Q2
affected
Description
Ericsson Indoor Connect 8855 contains a vulnerability where server-side security can be bypassed in the client which if exploited can lead to unauthorized disclosure of certain information.
Problem types
CWE-522 Insufficiently Protected Credentials
Product status
Any version before 2025.Q2
Credits
Telstra
References
www.ericsson.com/en/about-us/security/psirt/e2025-09-25
