Skip to main content

Ericsson Packet Core Controller CVE-2025-59174

| EUVDEUVD-2025-210074 HIGH
Improper Handling of Syntactically Invalid Structure (CWE-228)
2026-06-05 ERIC GHSA-7hxw-qvvv-v969
7.1
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
7.1 HIGH
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

7
Patch available
Jun 05, 2026 - 16:01 EUVD
Analysis Updated
Jun 05, 2026 - 15:28 vuln.today
v3 (cvss_changed)
Analysis Updated
Jun 05, 2026 - 15:28 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jun 05, 2026 - 15:22 vuln.today
cvss_changed
Severity Changed
Jun 05, 2026 - 15:22 NVD
MEDIUM HIGH
CVSS changed
Jun 05, 2026 - 15:22 NVD
6.5 (MEDIUM) 7.1 (HIGH)
Analysis Generated
Jun 05, 2026 - 15:03 vuln.today

DescriptionCVE.org

Ericsson Packet Core Controller (PCC) versions prior to 1.39 contain a vulnerability where an attacker sending a large volume of specially crafted messages may cause service degradation.

AnalysisAI

Denial-of-service in Ericsson Packet Core Controller (PCC) versions prior to 1.39 allows an adjacent-network attacker without credentials to degrade service by flooding the controller with specially crafted messages. The CVSS 4.0 score of 7.1 reflects high availability impact with no confidentiality or integrity loss; no public exploit identified at time of analysis and the issue is not listed in CISA KEV.

Technical ContextAI

The Packet Core Controller is a 5G/4G mobile-core network function from Ericsson responsible for session and mobility management within an operator's signaling plane. CWE-228 (Improper Handling of Syntactically Invalid Structure) indicates that the controller's message-parsing logic fails to gracefully handle malformed or anomalous protocol structures, allowing resource exhaustion or processing errors when such messages are received in volume. Affected CPE is cpe:2.3:a:ericsson:packet_core_controller across all versions prior to 1.39.

RemediationAI

Vendor-released patch: upgrade to Ericsson Packet Core Controller version 1.39 or later as directed in the Ericsson PSIRT advisory at https://ericsson.com/en/about-us/security/psirt/CVE-2025-59174. As compensating controls until the upgrade is scheduled, restrict the PCC's signaling interfaces to known peer network functions via firewall ACLs on the signaling VLAN, enforce rate-limiting on the inbound control-plane messages that feed the affected parser, and enable signaling-storm monitoring to detect anomalous message volumes - be aware that aggressive rate-limits can themselves cause subscriber session failures during legitimate traffic spikes such as mass reattach events.

CVE-2015-2166 MEDIUM POC
5.0 Apr 06

Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5

CVE-2018-9245 CRITICAL POC
9.8 Apr 22

The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and password fields that a

CVE-2018-10285 CRITICAL POC
9.8 Apr 22

The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access control mechanisms. Rated critical severity (CVSS

CVE-2021-43339 HIGH POC
8.8 Nov 03

In Ericsson Network Location before 2021-07-31, it is possible for an authenticated attacker to inject commands via file

CVE-2018-10286 HIGH POC
8.8 Apr 22

The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and th

CVE-2021-41390 HIGH POC
8.0 Sep 17

In Ericsson ECM before 18.0, it was observed that Security Provider Endpoint in the User Profile Management Section is v

CVE-2018-15138 HIGH POC
7.5 Aug 15

Ericsson-LG iPECS NMS 30M allows directory traversal via ipecs-cm/download?filename=../ URIs. Rated high severity (CVSS

CVE-2019-7417 MEDIUM POC
6.1 Mar 21

XSS exists in Ericsson Active Library Explorer (ALEX) 14.3 in multiple parameters in the "/cgi-bin/alexserv" servlet, as

CVE-2015-2167 MEDIUM POC
5.8 Apr 06

Open redirect vulnerability in the 3PI Manager in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 all

CVE-2021-41391 MEDIUM POC
5.4 Sep 17

In Ericsson ECM before 18.0, it was observed that Security Management Endpoint in User Profile Management Section is vul

CVE-2020-29145 MEDIUM POC
5.4 Nov 27

In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX that is vulnerable to stored XSS v

CVE-2020-29144 MEDIUM POC
5.4 Nov 27

In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base module in BSCS iX that is vulnerable to stored XSS via

Share

CVE-2025-59174 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy