CVE-2026-25657

UNKNOWN 0.0

Ericsson Packet Core Gateway (PCG) - Improper Handling of Syntactically Invalid Structure Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

4th

Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Syntactically Invalid Structure (CWE-228) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.

CWE	CWE-228
Vendor	ericsson
Product	packet core gateway (pcg)
Published	Jun 5, 2026
Last Updated	Jun 5, 2026

Stay Ahead of the Next One

Get instant alerts for ericsson packet core gateway (pcg)

Be the first to know when new unknown vulnerabilities affecting ericsson packet core gateway (pcg) are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Ericsson / Packet Core Gateway (PCG)

0 < 1.30

References

NVD ↗ CVE.org ↗ EPSS Data ↗

ericsson.com: https://www.ericsson.com/en/about-us/security/psirt/cve-2026-25657

Credits

Clemens Keil, Manfred Heinz, Patrick Walker of BDO Cyber Security GmbH BSI 5G/6G Security Lab TEMIS (Federal Office for Information Security, Germany)