PT-2026-5127 · Open5Gs · Open5Gs
Linziyu
·
Published
2026-01-28
·
Updated
2026-01-28
·
CVE-2026-1521
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Open5GS versions through 2.7.6
Description
A security flaw exists in Open5GS, potentially leading to a denial of service. The issue resides within the
sgwc s5c handle bearer resource failure indication function located in the src/sgwc/s5c-handler.c file of the SGWC component. Manipulation of this function can trigger the denial of service. The attack can be initiated remotely, and an exploit has been publicly released.Recommendations
Apply the patch 69b53add90a9479d7960b822fc60601d659c328b to fix this issue.
Exploit
Fix
DoS
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Open5Gs