CVE-2026-25658EPSS p6.0%

CVE-2026-25658CVE-2026-25658

ericsson / packet_core_gateway

Description

Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Missing Values (CWE-230) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS0.17% probability of exploitation · percentile 6.0% · 2026-06-19T12:03:05Z
Last modified2026-06-08

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-25659
CVE
CVE-2026-25657
CVE
CVE-2025-59174
CVE
CVE-2025-27258
CVE
CVE-2025-27034
CVE
CVE-2026-8686
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.