Low severity3.3NVD Advisory· Published Jan 2, 2026· Updated Apr 29, 2026
CVE-2025-15418
CVE-2025-15418
Description
A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function ogs_gtp2_parse_bearer_qos in the library lib/gtp/v2/types.c of the component Bearer QoS IE Length Handler. Performing a manipulation results in denial of service. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is named 4e913d21f2c032b187815f063dbab5ebe65fe83a. To fix this issue, it is recommended to deploy a patch.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/open5gs/open5gs/commit/4e913d21f2c032b187815f063dbab5ebe65fe83anvdPatch
- github.com/open5gs/open5gs/issues/4217nvdExploitIssue TrackingVendor Advisory
- github.com/open5gs/open5gs/issues/4217nvdExploitIssue TrackingVendor Advisory
- github.com/open5gs/open5gs/issues/4217nvdExploitIssue TrackingVendor Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.