CVE-2026-1521

Sažetak

A security flaw has been discovered in Open5GS up to 2.7.6. This affects the function sgwc_s5c_handle_bearer_resource_failure_indication of the file src/sgwc/s5c-handler.c of the component SGWC. Performing a manipulation results in denial of service. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks. The patch is named 69b53add90a9479d7960b822fc60601d659c328b. It is recommended to apply a patch to fix this issue.

Reference

https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b
https://github.com/open5gs/open5gs/issues/4268
https://github.com/open5gs/open5gs/issues/4268#event-21989483261
https://github.com/open5gs/open5gs/issues/4268#issue-3795012861
https://vuldb.com/?ctiid.343192
https://vuldb.com/?id.343192
https://vuldb.com/?submit.738370

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

02-02-2026 - 19:44

Objavljeno

28-01-2026 - 15:16