CVE-2026-25657EPSS p6.0%

CVE-2026-25657CVE-2026-25657

ericsson / packet_core_gateway

Description

Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Syntactically Invalid Structure (CWE-228) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS0.17% probability of exploitation · percentile 6.0% · 2026-06-19T12:03:05Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-25658
CVE
CVE-2026-25659
CVE
CVE-2025-59174
CVE
CVE-2025-27034
CVE
CVE-2025-40836
CVE
CVE-2025-27258
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.