Описание
Ericsson Indoor Connect 8855 contains a command injection vulnerability which if exploited can result in an escalation of privileges.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2025.q2 (исключая)
Одновременно
cpe:2.3:o:ericsson:indoor_connect_8855_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ericsson:indoor_connect_8855:-:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00049
Низкий
7.8 High
CVSS3
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 7.8
github
5 месяцев назад
Ericsson Indoor Connect 8855 contains a command injection vulnerability which if exploited can lead to loss of integrity and confidentiality, as well as unauthorized disclosure and modification of user and configuration data. It may also be possible to execute commands with escalated privileges, impact service availability, as well as modify system files and configuration data.
EPSS
Процентиль: 15%
0.00049
Низкий
7.8 High
CVSS3
Дефекты
CWE-78