4.3
CVE-2026-10113
- EPSS 0.3%
- Veröffentlicht 30.05.2026 08:45:08
- Zuletzt bearbeitet 01.06.2026 15:16:05
- Quelle cna@vuldb.com
- CVE-Watchlists
- Unerledigt
Open5GS Shared NF-profile nnrf-handler.c denial of service
A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is an unknown functionality in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. The manipulation results in denial of service. It is possible to launch the attack remotely. The exploit has been made public and could be used. A patch should be applied to remediate this issue.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
Herstellern/a
≫
Produkt
Open5GS
Version
2.7.0
Status
affected
Version
2.7.1
Status
affected
Version
2.7.2
Status
affected
Version
2.7.3
Status
affected
Version
2.7.4
Status
affected
Version
2.7.5
Status
affected
Version
2.7.6
Status
affected
Version
2.7.7
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.21 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| cna@vuldb.com | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
|
| cna@vuldb.com | 2.1 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| cna@vuldb.com | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:N/I:N/A:P
|
CWE-404 Improper Resource Shutdown or Release
The product does not release or incorrectly releases a resource before it is made available for re-use.
https://github.com/open5gs/open5gs/
https://vuldb.com/vuln/367291
https://vuldb.com/vuln/367291/cti
https://vuldb.com/submit/818581
https://github.com/open5gs/open5gs/issues/4467
https://github.com/open5gs/open5gs/pull/4527