CVE-2025-40842

UNKNOWN 0.0

Ericsson Indoor Connect 8855 - Improper Neutralization of Input During Web Page Generation Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Scripting (XSS) vulnerability which, if exploited, can lead to unauthorized disclosure and modification of certain information.

CWE	CWE-79
Vendor	ericsson
Product	indoor connect 8855
Published	Mar 25, 2026
Last Updated	Mar 25, 2026

Stay Ahead of the Next One

Get instant alerts for ericsson indoor connect 8855

Be the first to know when new unknown vulnerabilities affecting ericsson indoor connect 8855 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Ericsson / Indoor Connect 8855

0 < 2025.Q3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

ericsson.com: https://www.ericsson.com/en/about-us/security/psirt/security-bulletin-indoorconnect-march-2026 ericsson.com: https://www.ericsson.com/en/about-us/security/psirt/CVE-2025-40842

Credits

Telstra