CVE-2025-59174

Published: Giu 05, 2026 Last Modified: Giu 05, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,1

Source: 85b1779b-6ecd-4f52-bcc5-73eac4659dcf

Attack Vector: adjacent

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 6,5

Source: 85b1779b-6ecd-4f52-bcc5-73eac4659dcf

Attack Vector: adjacent_network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

Ericsson Packet Core Controller (PCC) versions prior to 1.39 contain a vulnerability where an attacker sending a large volume of specially crafted messages may cause service degradation.

228

Improper Handling of Syntactically Invalid Structure

Incomplete

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Availability

Potential Impacts:

Unexpected State Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu)

Applicable Platforms

All platforms may be affected

View CWE Details

https://ericsson.com/en/about-us/security/psirt/CVE-2025-59…

https://ericsson.com/en/about-us/security/psirt/CVE-2025-59174

CVE-2025-59174

Description

Improper Handling of Syntactically Invalid Structure

Common Consequences

Applicable Platforms

Iscriviti alla newsletter