Open5gs

Open5gs

114 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-15529

Exploit
  • EPSS 0.05%
  • Veröffentlicht 16.01.2026 22:16:18
  • Zuletzt bearbeitet 23.02.2026 09:16:27

A vulnerability was found in Open5GS up to 2.7.6. Affected by this issue is the function sgwc_s5c_handle_create_session_response of the file src/sgwc/s5c-handler.c. Performing a manipulation results in denial of service. Remote exploitation of the at...

5.5

CVE-2025-15419

Exploit
  • EPSS 0.01%
  • Veröffentlicht 02.01.2026 00:02:08
  • Zuletzt bearbeitet 23.02.2026 09:16:19

A weakness has been identified in Open5GS up to 2.7.6. Affected by this issue is the function sgwc_s5c_handle_create_session_response of the file src/sgwc/s5c-handler.c of the component GTPv2-C Flow Handler. Executing a manipulation can lead to denia...

5.5

CVE-2025-15418

Exploit
  • EPSS 0.02%
  • Veröffentlicht 01.01.2026 23:32:07
  • Zuletzt bearbeitet 23.02.2026 09:16:19

A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function ogs_gtp2_parse_bearer_qos in the library lib/gtp/v2/types.c of the component Bearer QoS IE Length Handler. Performing a manipulation results in...

5.5

CVE-2025-15417

Exploit
  • EPSS 0.02%
  • Veröffentlicht 01.01.2026 23:15:56
  • Zuletzt bearbeitet 23.02.2026 09:16:19

A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attac...

7.5

CVE-2025-15176

Exploit
  • EPSS 0.1%
  • Veröffentlicht 29.12.2025 06:32:06
  • Zuletzt bearbeitet 24.02.2026 07:17:00

A flaw has been found in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp_pdr_rule_find_by_packet of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing a manipulation can le...

6.3

CVE-2025-14955

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.12.2025 16:32:08
  • Zuletzt bearbeitet 24.02.2026 06:16:29

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ogs_pfcp_handle_create_pdr in the library lib/pfcp/handler.c of the component PFCP. The manipulation results in improper initialization. It is possible t...

5.9

CVE-2025-14954

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.12.2025 16:02:11
  • Zuletzt bearbeitet 24.02.2026 06:16:29

A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogs_pfcp_pdr_find_or_add/ogs_pfcp_far_find_or_add/ogs_pfcp_urr_find_or_add/ogs_pfcp_qer_find_or_add in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. Th...

5.3

CVE-2025-14953

Exploit
  • EPSS 0.09%
  • Veröffentlicht 19.12.2025 16:02:07
  • Zuletzt bearbeitet 24.02.2026 06:16:29

A flaw has been found in Open5GS up to 2.7.5. This impacts the function ogs_pfcp_handle_create_pdr in the library lib/pfcp/handler.c of the component FAR-ID Handler. Executing a manipulation can lead to null pointer dereference. The attack may be per...

7.5

CVE-2025-65559

Exploit
  • EPSS 0.08%
  • Veröffentlicht 18.12.2025 00:00:00
  • Zuletzt bearbeitet 06.01.2026 20:01:32

An issue was discovered in Open5GS 2.7.5-49-g465e90f, when processing a PFCP Session Establishment Request (type=50), the UPF crashes with a reachable assertion in `lib/pfcp/context.c` (`ogs_pfcp_object_teid_hash_set`) if the CreatePDR?PDI?F-TEID has...

7.5

CVE-2025-63288

  • EPSS 0.06%
  • Veröffentlicht 10.11.2025 19:15:57
  • Zuletzt bearbeitet 11.12.2025 23:30:00

In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service.