Lucene search
K

16 matches found

EUVD
EUVD
added 3 days ago6 views

EUVD-2026-42632

A security flaw has been discovered in Open5GS 2.7.7. This affects the function amfcontextfinal of the file src/amf/context.c of the component AMF. Performing a manipulation results in use after free. The attack is only possible with local access. The exploit has been released to the public and m...

4.8CVSS5.6AI score0.00121EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/30 11:0 a.m.13 views

CVE-2026-10116

A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogssbixactadd in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint. Performing a manipulation results in denial of service. The attack may be initiated remotely. The...

5.3CVSS5.4AI score0.00391EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/11 12:31 a.m.18 views

EUVD-2026-29003

A flaw has been found in Open5GS up to 2.7.7. The impacted element is the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been published and...

5.3CVSS5.3AI score0.00372EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.8 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the delete Endpoint component called...

7.5CVSS6.1AI score0.00487EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/10 12:0 a.m.16 views

PT-2026-39541

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.8 Description A remote denial of service issue exists in the SMF component. The flaw is located in the update authorized pcc rule and qos function within the /src/smf/npcf-handler.c file. An attacker can remotely...

5.3CVSS5.8AI score0.00471EPSS
Exploits1References7
EUVD
EUVD
added 2026/05/08 3:30 a.m.13 views

EUVD-2026-28478

A flaw has been found in Open5GS up to 2.7.7. The affected element is the function nssfnnrfnsselectionhandlegetfromamforvnssf of the file /src/nssf/nnssf-handler.c of the component NSSF. Executing a manipulation can lead to denial of service. The attack can be executed remotely. The exploit has...

5.3CVSS5.4AI score0.00372EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.11 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the operation of the parameter “pei” in the function...

5.3CVSS5.7AI score0.00407EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/02 2:0 a.m.8 views

EUVD-2026-26727

A vulnerability has been found in Open5GS up to 2.7.6. Affected is an unknown function of the file src/amf/gmm-handler.c of the component AMF. The manipulation of the argument regtype leads to denial of service. The attack is possible to be carried out remotely. Upgrading to version 2.7.7 is able...

5.3CVSS5.4AI score0.00398EPSS
Exploits0References7
EUVD
EUVD
added 2026/05/01 2:45 p.m.8 views

EUVD-2026-26661

A flaw has been found in Open5GS up to 2.7.7. This issue affects the function bsfsessfindbyipv6prefix of the file /src/bsf/context.c of the component BSF. This manipulation of the argument ipv6Prefix causes denial of service. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS5.5AI score0.00271EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/01 1:0 a.m.31 views

CVE-2026-7535 Open5GS transfer-update denial of service

A vulnerability was found in Open5GS up to 2.7.7. This affects the function amfnamfcommhandleregistrationstatusupdaterequest in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-contexts/ueContextId/transfer-update. Performing a manipulation of the argument ueContextId results in denia...

5.3CVSS0.00302EPSS
Exploits0References6
NVD
NVD
added 2026/03/16 2:20 p.m.10 views

CVE-2026-4240

A vulnerability was determined in Open5GS up to 2.7.6. The affected element is the function smfgxccacb/smfgyccacb/smfs6baaacb/smfs6bstacb of the component CCA Handler. This manipulation causes denial of service. The attack can be initiated remotely. The exploit has been publicly disclosed and may...

7.5CVSS0.00534EPSS
Exploits1References8
OSV
OSV
added 2026/03/16 1:32 p.m.4 views

CVE-2026-4240 Open5GS CCA smf_s6b_sta_cb denial of service

A vulnerability was determined in Open5GS up to 2.7.6. The affected element is the function smfgxccacb/smfgyccacb/smfs6baaacb/smfs6bstacb of the component CCA Handler. This manipulation causes denial of service. The attack can be initiated remotely. The exploit has been publicly disclosed and may...

6.9CVSS5.7AI score0.00534EPSS
Exploits1References10
NVD
NVD
added 2025/12/24 1:16 p.m.5 views

CVE-2025-68601

Cross-Site Request Forgery CSRF vulnerability in Rustaurius Five Star Restaurant Reservations restaurant-reservations allows Cross Site Request Forgery.This issue affects Five Star Restaurant Reservations: from n/a through = 2.7.8...

5.4CVSS0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.12 views

CVE-2025-60164

Cross-Site Request Forgery CSRF vulnerability in NewsMAN NewsmanApp newsmanapp allows Stored XSS.This issue affects NewsmanApp: from n/a through = 2.7.7...

7.1CVSS5.9AI score0.00135EPSS
Exploits0References1
Circl
Circl
added 2022/08/11 4:42 p.m.4 views

CVE-2022-2776

creationtimestamp| type| source ---|---|--- 2022-08-11 16:42:04+00:00| seen| https://t.me/cibsecurity/47954...

5.4CVSS5.5AI score0.00539EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/07/27 12:0 a.m.7 views

PT-2021-19931 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions prior to 2.7.7 Description: Discourse is an open source discussion platform. There are two bugs that led to the post creator of a whisper post being revealed to non-staff users. The first bug occurs when a staff user create...

4.3CVSS4.5AI score0.00888EPSS
Exploits0References10
Rows per page
Query Builder