Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

Vulnerability IntelligenceCVE-2025-27260

CVE-2025-27260

HIGH7.5

Ericsson Indoor Connect 8855 - Improper Filtering of Special Elements Vulnerability

Published Mar 25, 2026

Modified 1 months ago

Details

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains an Improper Filtering of Special Elements vulnerability which, if exploited, can lead to unauthorized modification of certain information

References

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2025-27260

WEB

https://www.ericsson.com/en/about-us/security/psirt/CVE-2025-27260

WEB

https://www.ericsson.com/en/about-us/security/psirt/security-bulletin-indoorconnect-march-2026

CVSS Analysis

CVSS v4.0

7.2

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Attack Requirements

NoneAT:N

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Vulnerable System

Vuln. Confidentiality

NoneVC:N

Vuln. Integrity

HighVI:H

Vuln. Availability

HighVA:H

Subsequent System

Subseq. Confidentiality

NoneSC:N

Subseq. Integrity

NoneSI:N

Subseq. Availability

NoneSA:N

7.2/CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Weakness Type (CWE)

Other

CWE-790

Ecosystems

Timeline

PublishedMar 25, 2026

ModifiedMar 25, 2026

CVE-2025-27260 | Mondoo Vulnerability Intelligence