CNNVD-202602-170 Information
CNNVD ID
CNNVD-202602-170
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
Open5GS是Open5GS开源的一个 5G Core 和 Epc 的 C 语言开源实现,即 Lte/Nr 网络的核心网络。 Open5GS 2.7.6及之前版本存在安全漏洞,该漏洞源于对文件/src/sgwc/s11-handler.c中函数sgwc_s11_handle_create_indirect_data_forwarding_tunnel_request的错误操作,可能导致可达断言。
Description (English)
Open5GS is a 5G Core and Epc open-language C open source of Open5GS, the core network of the Lte/Nr network. Open5GS 2.7.6 and previous versions contain a security loophole that stems from an error in the document/src/sgwc/s11-handler.c function sgwc s11 handle create direct data forwarding turnel request, which may lead to an assertion.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Open5GS
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/open5gs/open5gs/ https://github.com/open5gs/open5gs/issues/4270 https://github.com/open5gs/open5gs/issues/4270#event-21968624624 https://github.com/open5gs/open5gs/issues/4270#issue-3795141303 https://vuldb.com/?ctiid.343635 https://vuldb.com/?id.343635 https://vuldb.com/?submit.741191
Share on: