CVE-2025-59174

Summary

Ericsson Packet Core Controller (PCC) versions prior to 1.39 contain a vulnerability where an attacker sending a large volume of specially crafted messages may cause service degradation.

Affected Software

VendorProductVersion RangeStatus
EricssonPacket Core Controller0 < 1.39affected

Weaknesses

  • CWE-228: CWE-228: Improper Handling of Syntactically Invalid Structure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References