Lucene search
K

13 matches found

CVE
CVE
added 2026/06/05 11:6 a.m.28 views

CVE-2026-25658

CVE-2026-25658 affects Ericsson Packet Core Gateway (PCG) versions prior to 1.30. The issue is an Improper Handling of Missing Values (CWE-230) where a client can send specially crafted messages to cause service degradation. The impact persists while the attack continues, with crashes recovering ...

7.1CVSS5.4AI score0.00165EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/06 6:32 p.m.28 views

CVE-2026-2062 Open5GS PGW S5U Address sgwc_sxa_handle_session_modification_response null pointer dereference

A vulnerability was identified in Open5GS up to 2.7.6. This affects the function sgwcs5chandlemodifybearerresponse/sgwcsxahandlesessionmodificationresponse of the component PGW S5U Address Handler. The manipulation leads to null pointer dereference. The attack can be initiated remotely. The explo...

6.9CVSS0.00652EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.8 views

Open5GS 代码问题漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.6 and earlier contain code vulnerabilities due to a null pointer dereferencing issue in the PGW S5U address handling program...

7.5CVSS6.2AI score0.00652EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-50292

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00969EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:17 a.m.10 views

CVE-2022-47531

An issue was discovered in Ericsson Evolved Packet Gateway EPG versions 3.x before 3.25 and 2.x before 2.16, allows authenticated users to bypass system CLI and execute commands they are authorized to execute directly in the UNIX shell...

8.8CVSS7.3AI score0.00969EPSS
Exploits0
OSV
OSV
added 2023/12/05 6:15 a.m.4 views

CVE-2022-47531

An issue was discovered in Ericsson Evolved Packet Gateway EPG versions 3.x before 3.25 and 2.x before 2.16, allows authenticated users to bypass system CLI and execute commands they are authorized to execute directly in the UNIX shell...

8.8CVSS5.9AI score0.00969EPSS
Exploits0References1
CVE
CVE
added 2023/12/05 12:0 a.m.34 views

CVE-2022-47531

Ericsson EPG (Ericsson Evolved Packet Gateway) is vulnerable to a CLI access control bypass that lets authenticated users run commands in the UNIX shell. Affected versions are 2.x before 2.16 and 3.x before 3.25. The issue arises from insufficient access controls on the CLI, enabling command exec...

8.8CVSS8.7AI score0.00969EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/04/05 11:0 p.m.2 views

CVE-2023-20051

A vulnerability in the Vector Packet Processor VPP of Cisco Packet Data Network Gateway PGW could allow an unauthenticated, remote attacker to stop ICMP traffic from being processed over an IPsec connection. This vulnerability is due to the VPP improperly handling a malformed packet. An attacker...

7.5CVSS5.9AI score0.00866EPSS
Exploits0References2
OSV
OSV
added 2023/04/05 5:15 p.m.3 views

CVE-2023-20051

A vulnerability in the Vector Packet Processor VPP of Cisco Packet Data Network Gateway PGW could allow an unauthenticated, remote attacker to stop ICMP traffic from being processed over an IPsec connection. This vulnerability is due to the VPP improperly handling a malformed packet. An attacker...

7.5CVSS7.1AI score
Exploits0References1
CNNVD
CNNVD
added 2023/04/05 12:0 a.m.5 views

Cisco Packet Data Network Gateway 安全漏洞

Cisco Packet Data Network Gateway is a key network function of Cisco's 4G mobile core network.PGW serves as an interface between the LTE network and other packet data networks. A security vulnerability exists in the Cisco Packet Data Network Gateway that arises from the Vector Packet Processor no...

7.5CVSS7.3AI score0.00866EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/12/19 12:0 a.m.6 views

PT-2022-7169 · Ericsson · Ericsson Evolved Packet Gateway

Name of the Vulnerable Software and Affected Versions: Ericsson Evolved Packet Gateway EPG versions 2.x before 2.16 Ericsson Evolved Packet Gateway EPG versions 3.x before 3.25 Description: The issue is related to the command-line interface CLI of the Ericsson Evolved Packet Gateway EPG and is...

8.8CVSS8.9AI score0.00969EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/08/08 12:0 a.m.6 views

Ericsson Evolved Packet Gateway 安全漏洞

Ericsson Evolved Packet Gateway is a multifunctional gateway for mobile communications from Ericsson, Sweden. A security vulnerability exists in Ericsson Evolved Packet Gateway that stems from a lack of input validation. The vulnerability can be exploited to bypass the system CLI and execute...

8.8CVSS8AI score0.00969EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/01 12:0 a.m.10 views

Qualcomm Data Modem Input Validation Error Vulnerability

Qualcomm Data Modem is a data modem from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Data Modem that stems from a failure to check input validation of certain parameters received from the ePDG server, which could result in a buffer overflow...

10CVSS7.7AI score0.00818EPSS
Exploits0References3
Rows per page
Query Builder