CVE-2025-15417
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
5.5 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Description
A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attack must be carried out locally. The exploit is publicly available and might be used. The name of the patch is 465273d13ba5d47b274c38c9d1b07f04859178a1. A patch should be applied to remediate this issue.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-404
Source
NVD
Vendor
open5gs
Product
open5gs
External References
- https://github.com/open5gs/open5gs/commit/465273d13ba5d47b274c38c9d1b07f04859178a1
- https://github.com/open5gs/open5gs/issues/4203
- https://github.com/open5gs/open5gs/issues/4203#issue-3719257558
- https://github.com/open5gs/open5gs/issues/4203#issuecomment-3681643498
- https://vuldb.com/?ctiid.339339
- https://vuldb.com/?id.339339
- https://vuldb.com/?submit.727616
- https://github.com/open5gs/open5gs/issues/4203#issue-3719257558
Discussion (0)
Add Comment
No comments yet. Be the first!