216.73.216.86

CVE-2025-40841

· Published 25/03/2026 14:16 · Modified 25/03/2026 15:41

Labels: CVE-2025-40841 2026-03-2585b1779b-6ecd-4f52-bcc5-73eac4659dcfCVE-2025-40841CWE-352

Essential information

Published
25/03/2026 14:16
Modified
25/03/2026 15:41
Author
Creator
CVSS
5.1 MEDIUM (v3) 5.1 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Ericsson Indoor Connect 8855 versions prior to 2025.Q3 contains a Cross-Site Request Forgery (CSRF) vulnerability which, if exploited, can lead to unauthorized modification of certain information.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
85b1779b-6ecd-4f52-bcc5-73eac4659dcf
NVD
View on NVD

Affected products (CPE)

ProductCPE
ericsson / indoor connect cpe:2.3:a:ericsson:indoor_connect:<2025.Q3:*:*:*:*:*:*:*

References