CVE-2025-59174
Awaiting Analysis
Awaiting Analysis - Queue
Ericsson Packet Core Controller Service Degradation Vulnerability
Publication date: 2026-06-05
Last updated on: 2026-06-05
Assigner: Ericsson
Description
Description
Ericsson Packet Core Controller (PCC) versions prior to 1.39 contain a vulnerability where an attacker sending a large volume of specially crafted messages may cause service degradation.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ericsson | packet_core_controller | to 1.39 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-228 | The product does not handle or incorrectly handles input that is not syntactically well-formed with respect to the associated specification. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability exists in Ericsson Packet Core Controller (PCC) versions prior to 1.39. An attacker can exploit this by sending a large volume of specially crafted messages, which may cause service degradation.
How can this vulnerability impact me? :
This vulnerability can lead to service degradation in the Ericsson Packet Core Controller, potentially disrupting network services that rely on this component.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, you should apply the update released by Ericsson for the Packet Core Controller (PCC) as described in their security bulletin.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70