Hello all, from a quick read through the paper published on Usenix it seems that eSIMs can cause some challenges.
My understanding is that the commands that can be used by a dodgy provider are probably baked into AOSP and cannot be prevented lest other eSIMs may not work and that the most serious risk would be data exfiltration about the location or premium, SMS type of issues, or packet routing / interceptions . If these are the only risks, and the eSIM is just used for data, using a VPN would help and just leave géolocalisation as a concern, if I'm not wrong.
Previous discussion in this forum mention adb to remove the STK, but that would likely break other eSIM install and in that case one could likely just turn off eSIM.