GCVE - cpe:2.3:a:ericsson:site_controller_6610:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ericsson:site_controller_6610:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Ericsson (`198bbf36-f632-548c-bd14-c61a678abe8e`)
Product	Site Controller 6610 (`f243a303-9800-59f4-995f-f61c8b280161`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-0636`	vulnerable	2026-06-03 14:58:32.530618	Arbitrary Code Execution vulnerability in Ericsson RAN Compute and Site Controller HIGH (8.4) EMCLI contains a high severity vulnerability where improper neutralization of special elements used in an OS command could be exploited leading to Arbitrary Code Execution. Published: 2025-10-13T06:26:16.829Z Updated: 2025-10-14T13:25:42.989Z Open on db.gcve.eu Reference links https://www.ericsson.com/en/about-us/security/psirt/cve-2025-0636	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-25010`	vulnerable	2026-06-03 14:55:06.238189	Ericsson RAN Compute and Site Controller 6610 - Improper Input Validation Vulnerability HIGH (8.8) Ericsson RAN Compute and Site Controller 6610 contains in certain configurations a high severity vulnerability where improper input validation could be exploited leading to arbitrary code execution. Published: 2025-05-22T10:14:00.320Z Updated: 2025-05-22T13:20:33.943Z Open on db.gcve.eu Reference links https://www.ericsson.com/en/about-us/security/psirt/CVE-2024-25010	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-25008`	vulnerable	2026-06-03 14:55:06.236236	Ericsson RAN Compute and Site Controller 6610 - Improper Input Validation Vulnerability MEDIUM (6.8) Ericsson RAN Compute and Site Controller 6610 contains a vulnerability in the Control System where Improper Input Validation can lead to arbitrary code execution, for example to obtain a Linux Shell with the same privileges as the attacker. The attacker would require elevated privileges for example a valid OAM user having the system administrator role to exploit the vulnerability. Published: 2024-08-16T09:42:21.010Z Updated: 2024-08-16T13:50:48.465Z Open on db.gcve.eu Reference links https://www.ericsson.com/en/about-us/security/psirt/security-bulletin-ericsson-ran-compute-august-2024	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.