CVE-2025-40842 | Ericsson Indoor Connect 8855 up to 2025.Q2 cross site scripting

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability marked as problematic has been reported in Ericsson Indoor Connect 8855 up to 2025.Q2. This affects an unknown function. This manipulation causes cross site scripting.

The identification of this vulnerability is CVE-2025-40842. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2025-40842 | Ericsson Indoor Connect 8855 up to 2025.Q2 cross site scripting

Post correlati

CVE-2024-6035 | gaizhenbiao chuanhuchatgpt up to 20240410 cross site scripting

CVE-2024-23897 | Jenkins Command Line Interface command information disclosure

CVE-2025-63214 | Bridgetech VBC Server & Element Manager 6.5.0-9/6.5.0-10 improper authorization

CVE-2025-8835 | JasPer up to 4.2.5 Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference (Issue 400)