CVE-2025-15555

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions Open5GS versions through 2.7.6

Description A security flaw exists in Open5GS. The issue involves a stack-based buffer overflow in the hss ogs diam cx mar cb function within the src/hss/hss-cx-path.c file, part of the VoLTE Cx-Test component. The OGS KEY LEN argument can be manipulated, leading to the overflow. This issue can be exploited remotely.

Recommendations Apply patch 54dda041211098730221d0ae20a2f9f9173e7a21 to remediate the issue.

Exploit

Fix

Stack Overflow

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-787CWE-119

Related Identifiers

CVE-2025-15555

Affected Products

Open5Gs

CVE-2025-15555

Weakness Enumeration

Related Identifiers

Affected Products

References · 14