CVE-2025-15417
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-01

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attack must be carried out locally. The exploit is publicly available and might be used. The name of the patch is 465273d13ba5d47b274c38c9d1b07f04859178a1. A patch should be applied to remediate this issue.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-01
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2026-01-02
EPSS Evaluated
2026-06-15
NVD
CVE-2025-15417
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
open5gs open5gs to 2.7.6 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-404 The product does not release or incorrectly releases a resource before it is made available for re-use.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in Open5GS up to version 2.7.6, specifically in the function sgwc_s11_handle_create_session_request within the GTPv2-C F-TEID Handler component. It allows a local attacker to manipulate the function, leading to a denial of service condition. The exploit is publicly available, and a patch has been released to fix the issue.

Impact Analysis

The vulnerability can cause a denial of service (DoS) on the affected Open5GS system when exploited locally. This means that the system or service may become unavailable or unresponsive, potentially disrupting network operations that rely on Open5GS.

Mitigation Strategies

Apply the patch named 465273d13ba5d47b274c38c9d1b07f04859178a1 to the Open5GS software to remediate the issue.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-15417. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart