CNNVD-202601-2918 Information

CNNVD ID

CNNVD-202601-2918

Related CVE

CVE-2025-15530

• CNNVD Published: 2026-01-17

Description (Chinese)

Open5GS是Open5GS开源的一个 5G Core 和 Epc 的 C 语言开源实现，即 Lte/Nr 网络的核心网络。 Open5GS 2.7.6及之前版本存在安全漏洞，该漏洞源于文件/src/sgwc/s11-handler.c中的sgwc_s11_handle_create_indirect_data_forwarding_tunnel_request函数存在操作，可能导致可达断言。

Description (English)

Open5GS is a 5G Core and Epc open-language C open source of Open5GS, the core network of the Lte/Nr network. Open5GS 2.7.6 and previous versions contain a security loophole, which stems from the operation of the sgwc s11 handle create direct data forwarding tonnel request function in document/src/sgwc/s11-handler.c, which may lead to an assertion.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Open5GS

Published

2026-01-17

Last Modified

2026-02-24

References

https://github.com/open5gs/open5gs/issues/4231 https://github.com/open5gs/open5gs/issues/4231#issue-3774187007 https://vuldb.com/?ctiid.341597 https://vuldb.com/?id.341597 https://vuldb.com/?submit.728987 https://access.redhat.com/security/cve/cve-2025-15530

Patch

https://open5gs.org/