Vulnerability Description
A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 98f76e98df35cd6a35e868aa62715db7f8141ac1. A patch should be applied to remediate this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open5Gs | Open5Gs | <= 2.7.6 |
Related Weaknesses (CWE)
References
- https://github.com/open5gs/open5gs/
- https://github.com/open5gs/open5gs/commit/98f76e98df35cd6a35e868aa62715db7f8141aPatch
- https://github.com/open5gs/open5gs/issues/4225ExploitIssue TrackingVendor Advisory
- https://github.com/open5gs/open5gs/issues/4225#issue-3769531006ExploitIssue TrackingVendor Advisory
- https://vuldb.com/?ctiid.341595Permissions RequiredVDB Entry
- https://vuldb.com/?id.341595Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.728128Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.729359
- https://vuldb.com/?submit.729360
- https://vuldb.com/?submit.738373
FAQ
What is CVE-2025-15528?
CVE-2025-15528 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of s...
How severe is CVE-2025-15528?
CVE-2025-15528 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-15528?
Check the references section above for vendor advisories and patch information. Affected products include: Open5Gs Open5Gs.