CVE-2026-10115
Gravedad CVSS v4.0:
BAJA
Tipo:
CWE-404
Apagado o liberación incorrecto de recursos
Fecha de publicación:
30/05/2026
Última modificación:
03/06/2026
Descripción
*** Pendiente de traducción *** A vulnerability was identified in Open5GS up to 2.7.7. This affects an unknown part in the library lib/sbi/nnrf-handler.c of the component Shared NF-profile Parser. Such manipulation leads to denial of service. The attack can be launched remotely. The exploit is publicly available and might be used. It is advisable to implement a patch to correct this issue.
Impacto
Puntuación base 4.0
2.10
Gravedad 4.0
BAJA
Puntuación base 3.x
4.30
Gravedad 3.x
MEDIA
Puntuación base 2.0
4.00
Gravedad 2.0
MEDIA
Referencias a soluciones, herramientas e información
- https://github.com/open5gs/open5gs/
- https://github.com/open5gs/open5gs/issues/4469
- https://github.com/open5gs/open5gs/issues/4469#issuecomment-4389805398
- https://github.com/open5gs/open5gs/pull/4527
- https://vuldb.com/submit/818583
- https://vuldb.com/vuln/367293
- https://vuldb.com/vuln/367293/cti
- https://github.com/open5gs/open5gs/issues/4469#issuecomment-4389805398
- https://github.com/open5gs/open5gs/pull/4527
- https://vuldb.com/submit/818583



