open5GS — Vulnerabilities & Security Advisories 92

All 92 CVE vulnerabilities found in open5GS, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-8270	Open5GS SMF ogs_nas_parse_qos_rules denial of service CWE-404	4.3	Medium	2026-05-11
CVE-2026-8269	Open5GS SMF smf_nsmf_handle_create_sm_context denial of service CWE-404	4.3	Medium	2026-05-11
CVE-2026-8268	Open5GS SMF OpenAPI_list_create denial of service CWE-404	4.3	Medium	2026-05-11
CVE-2026-8267	Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of service CWE-404	4.3	Medium	2026-05-11
CVE-2026-8266	Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_accept denial of service CWE-404	4.3	Medium	2026-05-11
CVE-2026-8252	Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer dereference CWE-476	4.3	Medium	2026-05-10
CVE-2026-8251	Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service CWE-404	4.3	Medium	2026-05-10
CVE-2026-8250	Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list denial of service CWE-404	4.3	Medium	2026-05-10
CVE-2026-8249	Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service CWE-404	4.3	Medium	2026-05-10
CVE-2026-8248	Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service CWE-404	4.3	Medium	2026-05-10
CVE-2026-8226	Open5GS types.c ogs_pcc_rule_install_flow_from_media denial of service CWE-404	5.3	Medium	2026-05-10
CVE-2026-8225	Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_handle_delete denial of service CWE-404	5.3	Medium	2026-05-10
CVE-2026-8224	Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of service CWE-404	5.3	Medium	2026-05-10
CVE-2026-8223	Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send denial of service CWE-404	5.3	Medium	2026-05-10
CVE-2026-8222	Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_management_handle_register denial of service CWE-404	5.3	Medium	2026-05-10
CVE-2026-8186	Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-of-bounds CWE-125	5.3	Medium	2026-05-09
CVE-2026-8187	Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption CWE-400	5.3	Medium	2026-05-09
CVE-2026-8123	Open5GS NSSF message.c ogs_sbi_discovery_option_add_snssais denial of service CWE-404	4.3	Medium	2026-05-08
CVE-2026-8122	Open5GS NSSF message.c ogs_sbi_discovery_option_add_service_names denial of service CWE-404	4.3	Medium	2026-05-08
CVE-2026-8121	Open5GS NSSF conv.c ogs_sbi_parse_plmn_list denial of service CWE-404	4.3	Medium	2026-05-08
CVE-2026-8120	Open5GS NSSF nnssf-handler.c denial of service CWE-404	4.3	Medium	2026-05-08
CVE-2026-8119	Open5GS NSSF nghttp2-server.c ogs_sbi_stream_find_by_id denial of service CWE-404	3.3	Low	2026-05-08
CVE-2026-7781	Open5GS amf-3gpp-access Endpoint nudm-handler.c udm_nudm_uecm_handle_amf_registration_update denial of service CWE-404	4.3	Medium	2026-05-04
CVE-2026-7780	Open5GS smf-registrations Endpoint udm-sm.c udm_state_operational denial of service CWE-404	4.3	Medium	2026-05-04
CVE-2026-7779	Open5GS authentication-subscription Endpoint nudr-handler.c udm_nudr_dr_handle_subscription_authentication denial of service CWE-404	4.3	Medium	2026-05-04
CVE-2026-7708	Open5GS UDR subscription.c ogs_dbi_subscription_data denial of service CWE-404	4.3	Medium	2026-05-03
CVE-2026-7707	Open5GS UDR nudr-handler.c udr_nudr_dr_handle_subscription_context denial of service CWE-404	4.3	Medium	2026-05-03
CVE-2026-7706	Open5GS AMF gmm-handler.c gmm_handle_service_request denial of service CWE-404	4.3	Medium	2026-05-03
CVE-2026-7601	Open5GS AMF gmm-handler.c denial of service CWE-404	4.3	Medium	2026-05-02
CVE-2026-7587	Open5GS AMF nsmf-handler.c amf_nsmf_pdusession_handle_update_sm_context denial of service CWE-404	4.3	Medium	2026-05-01

All 92 known CVE vulnerabilities affecting open5GS with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

open5GS — Vulnerabilities & Security Advisories 92