CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

CVE-2026-10117

A weakness has been identified in Open5GS up to 2.7.7. This issue affects the function ogspoolidcalloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of service. The attack may be launched remotely. The exploit has been made available to the public and could...

5.3CVSS5.5AI score0.00039EPSS

Exploits0References1

NVD•added 5 days ago•9 views

CVE-2026-10117

5.3CVSS0.00039EPSS

Exploits0References5

Cvelist•added 5 days ago•31 views

CVE-2026-10117 Open5GS nghttp2-server.c ogs_pool_id_calloc denial of service

5.3CVSS0.00039EPSS

Exploits0References5

ATTACKERKB•added 5 days ago•5 views

CVE-2026-10117

5.3CVSS5.5AI score0.00039EPSS

Exploits0References5

CVE•added 5 days ago•15 views

CVE-2026-10117

The CVE concerns Open5GS up to 2.7.7. The issue affects the ogs_pool_id_calloc function in /lib/sbi/nghttp2-server.c. A manipulation can remotely trigger a denial of service. Public exploit availability is noted. Remediation guidance: apply the official patch/update to resolve the vulnerability (...

5.3CVSS5.5AI score0.00039EPSS

Exploits0References5

Vulnrichment•added 5 days ago•4 views

CVE-2026-10117 Open5GS nghttp2-server.c ogs_pool_id_calloc denial of service

5.3CVSS5.5AI score0.00039EPSS

Exploits0References5

Positive Technologies•added 5 days ago•6 views

PT-2026-45094

A weakness has been identified in Open5GS up to 2.7.7. This issue affects the function ogs pool id calloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of service. The attack may be launched remotely. The exploit has been made available to the public and...

5.3CVSS5.5AI score0.00039EPSS

Exploits0References6

RedhatCVE•added 2026/05/19 1:58 a.m.•8 views

CVE-2026-8746

A security flaw has been discovered in Open5GS up to 2.7.7. Affected by this issue is the function discoverhandler in the library /lib/sbi/nghttp2-server.c of the component NRF. The manipulation results in use after free. The attack can be launched remotely. The exploit has been released to the...

6.5CVSS5.4AI score0.00049EPSS

Exploits1References1

NVD•added 2026/05/17 11:16 a.m.•8 views

CVE-2026-8746

6.5CVSS0.00049EPSS

Exploits1References5

CVE•added 2026/05/17 10:15 a.m.•8 views

CVE-2026-8746

Open5GS up to 2.7.7 contains a use-after-free in NRF’s discover_handler function ( /lib/sbi/nghttp2-server.c ). The vulnerability can be triggered remotely; public exploit exists according to the description. Affected component: NRF within Open5GS. Exploit maturity is noted as PROOF-OF-CONCEPT in...

6.5CVSS5.4AI score0.00049EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/05/17 10:15 a.m.•3 views

CVE-2026-8746

5.3CVSS5.4AI score0.00049EPSS

Exploits1References5

Cvelist•added 2026/05/17 10:15 a.m.•36 views

CVE-2026-8746 Open5GS NRF nghttp2-server.c discover_handler use after free

5.3CVSS0.00049EPSS

Exploits1References5

EUVD•added 2026/05/17 10:15 a.m.•5 views

EUVD-2026-30695

5.3CVSS5.4AI score0.00049EPSS

Exploits1References5

CNNVD•added 2026/05/17 12:0 a.m.•5 views

Open5GS 缓冲区错误漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain a buffer error vulnerability. This vulnerability stems from the reuse of a resource after it has been released in the...

6.5CVSS5.9AI score0.00049EPSS

Exploits1References2

Positive Technologies•added 2026/05/17 12:0 a.m.•8 views

PT-2026-41538

A security flaw has been discovered in Open5GS up to 2.7.7. Affected by this issue is the function discover handler in the library /lib/sbi/nghttp2-server.c of the component NRF. The manipulation results in use after free. The attack can be launched remotely. The exploit has been released to the...

5.3CVSS5.4AI score0.00049EPSS

Exploits1References6

RedhatCVE•added 2026/05/09 2:21 a.m.•4 views

CVE-2026-8119

A vulnerability was detected in Open5GS up to 2.7.7. Impacted is the function ogssbistreamfindbyid in the library /lib/sbi/nghttp2-server.c of the component NSSF. Performing a manipulation results in denial of service. Attacking locally is a requirement. The exploit is now public and may be used...

5.5CVSS5.5AI score0.00007EPSS

Exploits1References1

Cvelist•added 2026/05/08 12:0 a.m.•24 views

CVE-2026-8119 Open5GS NSSF nghttp2-server.c ogs_sbi_stream_find_by_id denial of service

4.8CVSS0.00007EPSS

Exploits1References5

CVE•added 2026/05/08 12:0 a.m.•7 views

CVE-2026-8119

CVE-2026-8119 affects Open5GS up to 2.7.7, specifically the NSSF path. The vulnerable element is the function ogs_sbi_stream_find_by_id in the file /lib/sbi/nghttp2-server.c of the NSSF component. A manipulation leads to a denial of service . The vulnerability requires a local attacker (attack ve...

5.5CVSS5.5AI score0.00007EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-38603

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A flaw in the NSSF component allows a local attacker to cause a denial of service through manipulation of the ogs sbi stream find by id function within the /lib/sbi/nghttp2-server.c library...

4.8CVSS5.7AI score0.00007EPSS

Exploits1References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by