Every CVE whose affected-product data names Open5gs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (154)
CVE-2021-28122 — CVSS 9.8 (critical): A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. The WebUI component allows an unauthenticated user…
CVE-2021-25863 — CVSS 8.8 (high): Open5GS 2.1.3 listens on 0.0.0.0:3000 and has a default password of 1423 for the admin account.
CVE-2023-37021 — CVSS 8.6 (high): Open5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37020 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37019 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37018 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37015 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37016 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37017 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2024-34235 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2024-24429 — CVSS 8.6 (high): A reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a…
CVE-2023-37023 — CVSS 8.6 (high): Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet handler. A packet missing its…
CVE-2025-44952 — CVSS 7.8 (high): A missing length check in `ogs_pfcp_subnet_add` function from PFCP library, used by both smf and upf in open5gs 2.7.2 and earlier, allows a…
CVE-2023-37014 — CVSS 7.5 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2024-34475 — CVSS 7.5 (high): Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmm_state_authentication…
CVE-2025-63288 — CVSS 7.5 (high): In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service.
CVE-2022-43222 — CVSS 7.5 (high): open5gs v2.4.11 was discovered to contain a memory leak in the component src/smf/pfcp-path.c. This vulnerability allows attackers to cause…
CVE-2025-52322 — CVSS 7.5 (high): An issue in Open5GS v2.7.2 and before allows a remote attacker to cause a denial of service via a crafted Create Session Request message to…
CVE-2025-52288 — CVSS 7.5 (high): Assertion failure in function ngap_build_downlink_nas_transport in file src/amf/ngap-build.c, the Access and Mobility Management Function…
CVE-2022-43223 — CVSS 7.5 (high): open5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This vulnerability allows attackers to cause a…
CVE-2023-23846 — CVSS 7.5 (high): Due to insufficient length validation in the Open5GS GTP library versions prior to versions 2.4.13 and 2.5.7, when parsing extension…
CVE-2021-41794 — CVSS 7.5 (high): ogs_fqdn_parse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The…
CVE-2021-44081 — CVSS 7.5 (high): A buffer overflow vulnerability exists in the AMF of open5gs 2.1.4. When the length of MSIN in Supi exceeds 24 characters, it leads to AMF…
CVE-2021-44108 — CVSS 7.5 (high): A null pointer dereference in src/amf/namf-handler.c in Open5GS 2.3.6 and earlier allows remote attackers to Denial of Service via a…
CVE-2021-44109 — CVSS 7.5 (high): A buffer overflow in lib/sbi/message.c in Open5GS 2.3.6 and earlier allows remote attackers to Denial of Service via a crafted sbi request.
CVE-2025-29339 — CVSS 7.5 (high): An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability in PFCP session parameter validation. When…
CVE-2025-41067 — CVSS 7.5 (high): Reachable Assertion vulnerability in Open5GS up to version 2.7.6 allows attackers with connectivity to the NRF to cause a denial of…
CVE-2025-41068 — CVSS 7.5 (high): Reachable Assertion vulnerability in Open5GS up to version 2.7.6 allows attackers with connectivity to the NRF to cause a denial of…
CVE-2023-4883 — CVSS 7.5 (high): Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the…
CVE-2024-24427 — CVSS 7.5 (high): A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted…
CVE-2024-24428 — CVSS 7.5 (high): A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a…
CVE-2024-24430 — CVSS 7.5 (high): A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a…
CVE-2024-24431 — CVSS 7.5 (high): A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service (DoS) via a…
CVE-2022-39063 — CVSS 7.5 (high): When Open5GS UPF receives a PFCP Session Establishment Request, it stores related values for building the PFCP Session Establishment…
CVE-2022-40890 — CVSS 7.5 (high): A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of service.
CVE-2025-65559 — CVSS 7.5 (high): An issue was discovered in Open5GS 2.7.5-49-g465e90f, when processing a PFCP Session Establishment Request (type=50), the UPF crashes with…
CVE-2022-43221 — CVSS 7.5 (high): open5gs v2.4.11 was discovered to contain a memory leak in the component src/upf/pfcp-path.c. This vulnerability allows attackers to cause…
CVE-2024-51179 — CVSS 7.5 (high): An issue in Open 5GS v.2.7.1 allows a remote attacker to cause a denial of service via the Network Function Virtualizations (NFVs) such as…
CVE-2024-56921 — CVSS 7.5 (high): An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect…
CVE-2024-57519 — CVSS 7.5 (high): An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the ogs_dbi_auth_info function in…
CVE-2023-37022 — CVSS 7.5 (high): Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `UE Context Release Request` packet handler. A packet containing an…
CVE-2023-4882 — CVSS 7.5 (high): DOS vulnerability that could allow an attacker to register a new VNF (Virtual Network Function) value. This action could trigger the…
CVE-2023-37013 — CVSS 7.3 (high): Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a sufficiently large ASN.1 packet over the S1AP…
CVE-2025-15555 — CVSS 7.3 (high): A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function hss_ogs_diam_cx_mar_cb of the…
CVE-2025-44951 — CVSS 7.1 (high): A missing length check in `ogs_pfcp_dev_add` function from PFCP library, used by both smf and upf in open5gs 2.7.2 and earlier, allows a…
CVE-2025-29646 — CVSS 7.1 (high): An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of Service via a crafted PFCP…
CVE-2026-0622 — CVSS 6.5 (medium): Open 5GS WebUI uses a hard-coded JWT signing key (change-me) whenever the environment variable JWT_SECRET_KEY is unset
CVE-2025-25774 — CVSS 6.5 (medium): An issue was discovered in Open5GS v2.7.2. When a UE switches between two gNBs and sends a handover request at a specific time, it may…
CVE-2023-4884 — CVSS 6.5 (medium): An attacker could send an HTTP request to an Open5GS endpoint and retrieve the information stored on the device due to the lack of…
CVE-2023-4885 — CVSS 6.5 (medium): Man in the Middle vulnerability, which could allow an attacker to intercept VNF (Virtual Network Function) communications resulting in the…
CVE-2023-37010 — CVSS 6.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37011 — CVSS 6.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2026-8743 — CVSS 6.3 (medium): A vulnerability was found in Open5GS up to 2.7.6. This impacts the function ran_ue_find_by_amf_ue_ngap_id of the file src/amf/context.c of…
CVE-2023-37009 — CVSS 6.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-50019 — CVSS 5.9 (medium): An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect…
CVE-2025-8803 — CVSS 5.3 (medium): A vulnerability has been found in Open5GS up to 2.7.5. Affected is the function gmm_state_de_registered/gmm_state_exception of the file…
CVE-2023-37002 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37003 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37004 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37005 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37006 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37007 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2023-37008 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of the S1AP handler. This buffer overflow…
CVE-2023-37012 — CVSS 5.3 (medium): Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An…
CVE-2024-24432 — CVSS 5.3 (medium): A reachable assertion in the ogs_kdf_hash_mme function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a…
CVE-2024-33382 — CVSS 5.3 (medium): An issue in Open5GS v.2.7.0 allows an attacker to cause a denial of service via the 64 unsuccessful UE/gnb registration
CVE-2024-34476 — CVSS 5.3 (medium): Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in…
CVE-2025-15176 — CVSS 5.3 (medium): A flaw has been found in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp_pdr_rule_find_by_packet of the file…
CVE-2025-15528 — CVSS 5.3 (medium): A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2…
CVE-2025-15529 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.6. Affected by this issue is the function sgwc_s5c_handle_create_session_response of the…
CVE-2025-15530 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.6. This affects the function sgwc_s11_handle_create_indirect_data_forwarding_tunnel_requ…
CVE-2025-15531 — CVSS 5.3 (medium): A vulnerability was identified in Open5GS up to 2.7.5. This vulnerability affects the function sgwc_bearer_add of the file…
CVE-2025-15532 — CVSS 5.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.5. This issue affects some unknown processing of the component Timer Handler. The…
CVE-2025-15539 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.6. Impacted is the function sgwc_s11_handle_downlink_data_notification_ack of the file…
CVE-2025-1925 — CVSS 5.3 (medium): A vulnerability classified as problematic was found in Open5GS up to 2.7.2. Affected by this vulnerability is the function…
CVE-2025-5501 — CVSS 5.3 (medium): A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function…
CVE-2025-5520 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.3. It has been classified as problematic. Affected is the function gmm_state_authentication/e…
CVE-2025-5935 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.3. It has been declared as problematic. Affected by this vulnerability is the function…
CVE-2025-8799 — CVSS 5.3 (medium): A vulnerability was identified in Open5GS up to 2.7.5. Affected by this vulnerability is the function amf_npcf_am_policy_control_build_creat…
CVE-2025-8800 — CVSS 5.3 (medium): A vulnerability has been found in Open5GS up to 2.7.5. Affected by this issue is the function esm_handle_pdn_connectivity_request of the…
CVE-2025-8801 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.5. This affects the function gmm_state_exception of the file src/amf/gmm-sm.c of the…
CVE-2025-8802 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.5. This vulnerability affects the function smf_state_operational of the file…
CVE-2025-8804 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngap_build_downlink_nas_transport of the…
CVE-2025-8805 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.5. Affected by this issue is the function smf_gsm_state_wait_pfcp_deletion of the file…
CVE-2025-9405 — CVSS 5.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.5. The impacted element is the function gmm_state_exception of the file…
CVE-2026-1521 — CVSS 5.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.6. This affects the function sgwc_s5c_handle_bearer_resource_failure_indication of…
CVE-2026-1522 — CVSS 5.3 (medium): A weakness has been identified in Open5GS up to 2.7.6. This vulnerability affects the function sgwc_s5c_handle_modify_bearer_response of…
CVE-2026-1586 — CVSS 5.3 (medium): A flaw has been found in Open5GS up to 2.7.5. Impacted is the function ogs_gtp2_f_teid_to_ip of the file /sgwc/s11-handler.c of the…
CVE-2026-1587 — CVSS 5.3 (medium): A vulnerability has been found in Open5GS up to 2.7.6. The affected element is the function sgwc_s11_handle_modify_bearer_request of the…
CVE-2026-1736 — CVSS 5.3 (medium): A security vulnerability has been detected in Open5GS up to 2.7.6. Impacted is the function sgwc_s11_handle_create_indirect_data_forwarding_…
CVE-2026-1737 — CVSS 5.3 (medium): A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function sgwc_s5c_handle_create_bearer_request of the file…
CVE-2026-1738 — CVSS 5.3 (medium): A flaw has been found in Open5GS up to 2.7.6. The impacted element is the function sgwc_tunnel_add of the file /src/sgwc/context.c of the…
CVE-2026-2062 — CVSS 5.3 (medium): A vulnerability was identified in Open5GS up to 2.7.6. This affects the function sgwc_s5c_handle_modify_bearer_response/sgwc_sxa_handle_sess…
CVE-2026-2517 — CVSS 5.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.6. This vulnerability affects the function ogs_gtp2_parse_tft in the library…
CVE-2026-2521 — CVSS 5.3 (medium): A weakness has been identified in Open5GS up to 2.7.6. This issue affects the function sgwc_s5c_handle_create_session_response of the…
CVE-2026-2522 — CVSS 5.3 (medium): A security vulnerability has been detected in Open5GS up to 2.7.6. Impacted is an unknown function of the file /src/mme/esm-build.c of the…
CVE-2026-2523 — CVSS 5.3 (medium): A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function smf_gn_handle_create_pdp_context_request of the…
CVE-2026-2524 — CVSS 5.3 (medium): A flaw has been found in Open5GS 2.7.6. The impacted element is the function mme_s11_handle_create_session_response of the component MME…
CVE-2026-4240 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.6. The affected element is the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b_aaa_cb/smf_s…
CVE-2026-8186 — CVSS 5.3 (medium): A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library…
CVE-2026-8187 — CVSS 5.3 (medium): A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component…
CVE-2026-8222 — CVSS 5.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function pcf_nbsf_management_handle_register of the file…
CVE-2026-8223 — CVSS 5.3 (medium): A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the…
CVE-2026-8224 — CVSS 5.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function pcf_sess_set_ipv6prefix of the file…
CVE-2026-8225 — CVSS 5.3 (medium): A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file…
CVE-2026-8226 — CVSS 5.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in…
CVE-2026-8288 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. This affects the function gsm_handle_pdu_session_modification_qos_flow_descriptions…
CVE-2026-8290 — CVSS 4.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.7. This issue affects the function smf_nsmf_handle_update_data_in_vsmf of the file…
CVE-2026-8291 — CVSS 4.3 (medium): A weakness has been identified in Open5GS up to 2.7.7. Impacted is the function ogs_nnrf_nfm_handle_nf_profile of the file…
CVE-2026-8292 — CVSS 4.3 (medium): A security vulnerability has been detected in Open5GS up to 2.7.7. The affected element is the function yuarel_parse in the library…
CVE-2026-8728 — CVSS 4.3 (medium): A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogs_sbi_discovery_option_parse_plmn_…
CVE-2026-8745 — CVSS 4.3 (medium): A vulnerability was identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogs_timer_add in the library…
CVE-2026-8746 — CVSS 4.3 (medium): A security flaw has been discovered in Open5GS up to 2.7.7. Affected by this issue is the function discover_handler in the library…
CVE-2026-8248 — CVSS 4.3 (medium): A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file…
CVE-2026-8249 — CVSS 4.3 (medium): A flaw has been found in Open5GS up to 2.7.7. The impacted element is the function update_authorized_pcc_rule_and_qos of the file…
CVE-2026-8250 — CVSS 4.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smf_n4_build_qos_flow_to_modify_list of the file…
CVE-2026-8251 — CVSS 4.3 (medium): A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file…
CVE-2026-8252 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF…
CVE-2026-8266 — CVSS 4.3 (medium): A vulnerability was detected in Open5GS up to 2.7.7. This affects the function gsm_build_pdu_session_establishment_accept of the file…
CVE-2026-8267 — CVSS 4.3 (medium): A flaw has been found in Open5GS up to 2.7.7. This vulnerability affects the function smf_nsmf_handle_created_data_in_vsmf of the component…
CVE-2026-8268 — CVSS 4.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function OpenAPI_list_create of the component SMF. Such…
CVE-2026-8269 — CVSS 4.3 (medium): A vulnerability was found in Open5GS up to 2.7.7. Impacted is the function smf_nsmf_handle_create_sm_context of the component SMF…
CVE-2026-8270 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. The affected element is the function ogs_nas_parse_qos_rules of the component SMF…
CVE-2026-8289 — CVSS 4.3 (medium): A vulnerability was identified in Open5GS up to 2.7.7. This vulnerability affects the function smf_nsmf_handle_update_data_in_vsmf of the…
CVE-2026-7585 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. The impacted element is the function amf_nudm_sdm_handle_provisioned of the file…
CVE-2026-7586 — CVSS 4.3 (medium): A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogs_id_get_value of the file /src/amf/nudm-handler.c of the…
CVE-2026-7587 — CVSS 4.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. This vulnerability affects the function amf_nsmf_pdusession_handle_update_sm_context…
CVE-2026-8120 — CVSS 4.3 (medium): A flaw has been found in Open5GS up to 2.7.7. The affected element is the function nssf_nnrf_nsselection_handle_get_from_amf_or_vnssf of…
CVE-2026-8121 — CVSS 4.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogs_sbi_parse_plmn_list in the library…
CVE-2026-8122 — CVSS 4.3 (medium): A vulnerability was found in Open5GS up to 2.7.7. This affects the function ogs_sbi_discovery_option_add_service_names in the library…
CVE-2025-1893 — CVSS 4.3 (medium): A vulnerability was found in Open5GS up to 2.7.2. It has been declared as problematic. Affected by this vulnerability is the function…
CVE-2026-8123 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. This impacts the function ogs_sbi_discovery_option_add_snssais in the library…
CVE-2026-8729 — CVSS 4.3 (medium): A vulnerability was detected in Open5GS up to 2.7.7. This affects an unknown function in the library /lib/sbi/message.c of the component…
CVE-2026-8730 — CVSS 4.3 (medium): A flaw has been found in Open5GS up to 2.7.6. This impacts the function ogs_sbi_nf_instance_set_id in the library /lib/sbi/context.c of the…
CVE-2026-8731 — CVSS 4.3 (medium): A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogs_sbi_client_add in the library /lib/sbi/client.c of the…
CVE-2022-3299 — CVSS 4.3 (medium): A vulnerability was found in Open5GS up to 2.4.10. It has been declared as problematic. Affected by this vulnerability is an unknown…
CVE-2026-8744 — CVSS 4.3 (medium): A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function ogs_sbi_subscription_data_add/ogs_sbi_nf_service_add in the…
CVE-2025-55904 — CVSS 4.0 (medium): Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL pointer dereference when a…
CVE-2026-4988 — CVSS 3.7 (low): A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b of the component…
CVE-2025-14955 — CVSS 3.7 (low): A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ogs_pfcp_handle_create_pdr in the library…
CVE-2025-14954 — CVSS 3.7 (low): A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogs_pfcp_pdr_find_or_add/ogs_pfcp_far_find_or_add/ogs_pfcp_u…
CVE-2022-3354 — CVSS 3.5 (low): A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This vulnerability affects unknown code in the…
CVE-2025-15417 — CVSS 3.3 (low): A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file…
CVE-2025-8698 — CVSS 3.3 (low): A vulnerability was found in Open5GS up to 2.7.5. It has been classified as problematic. Affected is the function amf_nsmf_pdusession_handle…
CVE-2025-6952 — CVSS 3.3 (low): A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.5. This issue affects the function…
CVE-2026-8119 — CVSS 3.3 (low): A vulnerability was detected in Open5GS up to 2.7.7. Impacted is the function ogs_sbi_stream_find_by_id in the library…
CVE-2025-15419 — CVSS 3.3 (low): A weakness has been identified in Open5GS up to 2.7.6. Affected by this issue is the function sgwc_s5c_handle_create_session_response of…
CVE-2025-15418 — CVSS 3.3 (low): A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function ogs_gtp2_parse_bearer_qos in the…
CVE-2025-7485 — CVSS 3.3 (low): A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function…
CVE-2025-14953 — CVSS 3.1 (low): A flaw has been found in Open5GS up to 2.7.5. This impacts the function ogs_pfcp_handle_create_pdr in the library lib/pfcp/handler.c of the…