In this section

Security Bulletins

Below table contains list of published Ericsson Product Security Bulletins and Notices.

Click on the Title link in the table to view more information.

Title	CVE IDs	Published Date	Last Updated
Security Bulletin – Ericsson Packet Core Controller (PCC), April 2026	CVE-2024-53828	1-Apr-2026	1-Apr-2026
Security Bulletin – Ericsson Indoor Connect 8855, March, 2026	CVE-2025-27260, CVE-2025-40841, CVE-2025-40842	25-Mar-2026	25-Mar-2026
Security Bulletin – Ericsson Network Manager (ENM), October 2025	CVE-2025-27258, CVE-2025-27259	13-Oct-2025	13-Oct-2025
Security Bulletin – Ericsson High Severity Vulnerability in EMCLI included in Ericsson RAN Compute and Site Controller, October 2025	CVE-2025-0636	9-Oct-2025	9-Oct-2025
Security Bulletin – Ericsson Indoor Connect 8855, September 2025	CVE-2025-27261, CVE-2025-27262, CVE-2025-40836, CVE-2025-40837, CVE-2025-40838	25-Sept-2025	25-Sept-2025
Security Bulletin – Ericsson Catalog Manager (ECM) and Ericsson Order Care (EOC), September 2025	CVE-2024-25011	18-Sept-2025	18-Sept-2025
Security Bulletin – Ericsson RAN Compute and Site Controller 6610, May 2025	CVE-2024-25010	22-May-2025	22-May-2025
Security Bulletin – Ericsson Packet Core Controller (PCC), May 2025	CVE-2024-53827	16-May-2025	16-May-2025
Security Bulletin – Ericsson Packet Core Controller (PCC), August 2024	CVE-2024-25009	20-Aug-2024	20-Aug-2024
Security Bulletin – Ericsson RAN Compute and Site Controller 6610, August 2024	CVE-2024-25008	16-Aug-2024	16-Aug-2024
Security Bulletin – Ericsson Network Manager, April 2024	CVE-2024-25007	4-Apr-2024	4-Apr-2024
Security Notice: Ericsson Response to Vulnerability in open-source Spring Framework for Java	CVE-2022-22965 (Spring4Shell)	1-Apr-2022	1-Apr-2022
Security Notice: Ericsson Response to Vulnerability in the logging library Log4j	CVE-2021-44228 (Log4Shell), CVE-2021-4104, CVE-2021-45046, CVE-2021-45105	23-Dec-2021	23-Dec-2021