Summary:
Ericsson has released an update for Packet Core Gateway to address security issues that if exploited may cause service degradation.
Vulnerability description:
This section summarizes the vulnerability issue and potential impact that this security update addresses.
CVE-2026-25657 - Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Syntactically Invalid Structure (CWE-228) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.
CVSS Base Score: 7.1
Severity: High
CVSS Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Base Score: 6.5
Severity: Medium
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Type: CWE-228: Improper Handling of Syntactically Invalid Structure
CVE-2026-25658 - Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Missing Values (CWE-230) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.
CVSS Base Score: 7.1
Severity: High
CVSS Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Base Score: 6.5
Severity: Medium
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Type: CWE-230: Improper Handling of Missing Values
CVE-2026-25659 - Ericsson Packet Core Gateway (PCG) versions prior to 1.30 contain an Improper Handling of Missing Values (CWE-230) vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the system recovers from the crashes when the attack stops.
CVSS Base Score: 7.1
Severity: High
CVSS Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Base Score: 6.5
Severity: Medium
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Type: CWE-230: Improper Handling of Missing Values
Security update:
The following table lists the Ericsson products affected, versions affected, and the updated version that includes this security update.
To protect your system, download and install the updated version.
| CVE Addressed | Product Name | Affected Versions | Updated Versions |
|---|---|---|---|
| CVE-2026-25657 | Packet Core Gateway (PCG) | All versions prior to 1.30 | 1.30 |
| CVE-2026-25658 | Packet Core Gateway (PCG) | All versions prior to 1.30 | 1.30 |
| CVE-2026-25659 | Packet Core Gateway (PCG) | All versions prior to 1.30 | 1.30 |
Acknowledgement:
Ericsson thanks following people/organization for reporting these issues to us:
- Clemens Keil, Manfred Heinz, Patrick Walker of BDO Cyber Security GmbH
- BSI 5G/6G Security Lab TEMIS (Federal Office for Information Security, Germany)
Additional information:
- Ericsson severity assessment of a vulnerability is based on an average of risk across a diverse set of installed systems and may not represent the true risk to your organization. We recommend evaluating the risk to your specific configuration.
- If you have any questions regarding this bulletin, please reach out to your local Ericsson support representative, for more information see our Customer Support page.
- Learn more about the vulnerability management process followed by the Ericsson Product Security Incident Response Team (PSIRT), see Ericsson PSIRT page.
Revision history:
| Revision | Date | Description |
|---|---|---|
| 1.0 | June 5, 2026 | Initial Release |
© Ericsson AB 2026. All rights reserved. No part of this message may be reproduced in any form without the written permission of the copyright owner. The contents of this document are subject to revision without notice due to continued progress in methodology, design and manufacturing. Ericsson shall have no liability for any error or damage of any kind resulting from the use of this message. For questions, please contact Ericsson Local Support or connect with us on the Omni Network Channel section of My Ericsson. Visit us at Support User Preferences to unsubscribe.