CNNVD-202601-4735 Information

Jan 28, 2026 cve

CNNVD ID

CNNVD-202601-4735

CVE-2026-1522

CNNVD Published: 2026-01-28

Description (Chinese)

Open5GS是Open5GS开源的一个 5G Core 和 Epc 的 C 语言开源实现，即 Lte/Nr 网络的核心网络。 Open5GS 2.7.6及之前版本存在安全漏洞，该漏洞源于对文件src/sgwc/s5c-handler.c中sgwc_s5c_handle_modify_bearer_response函数的错误操作，可能导致拒绝服务攻击。

Description (English)

Open5GS is a 5G Core and Epc open-language C open source of Open5GS, the core network of the Lte/Nr network. Open5GS 2.7.6 and previous versions contain a security loophole, which stems from an error in the Src/sgwc/s5c-handler.c function sgwc s5c handle modify bearer response, which may lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Open5GS

Published

2026-01-28

Last Modified

2026-02-24

References

https://vuldb.com/?id.343193 https://vuldb.com/?ctiid.343193 https://github.com/open5gs/open5gs/issues/4266 https://vuldb.com/?submit.738371 https://github.com/open5gs/open5gs/issues/4266#event-21968568116 https://github.com/open5gs/open5gs/commit/b19cf6a https://github.com/open5gs/open5gs/issues/4266#issue-3794991595 https://access.redhat.com/security/cve/cve-2026-1522

Share on: