PT-2026-1034 · Open5Gs · Open5Gs
Linziyu
·
Published
2026-01-01
·
Updated
2026-01-05
·
CVE-2025-15418
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Open5GS versions prior to 2.7.7
Description
A security issue exists in Open5GS. The
ogs gtp2 parse bearer qos function within the Bearer QoS IE Length Handler component, located in lib/gtp/v2/types.c, is susceptible to manipulation, leading to a denial of service. The attack requires local access. The exploit for this issue is publicly available.Recommendations
Deploy patch 4e913d21f2c032b187815f063dbab5ebe65fe83a.
Exploit
Fix
DoS
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Open5Gs