Описание
Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can allow an attacker to execute commands with escalated privileges.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2025.q2 (исключая)
Одновременно
cpe:2.3:o:ericsson:indoor_connect_8855_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ericsson:indoor_connect_8855:-:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00268
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 9.8
github
5 месяцев назад
Ericsson Indoor Connect 8855 contains an improper input validation vulnerability which if exploited can lead to loss of integrity and confidentiality, as well as unauthorized disclosure and modification of of user and configuration data. It may also be possible to execute commands with escalated privileges, impact service availability, as well as modify system files and configuration data.
EPSS
Процентиль: 50%
0.00268
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-20