CVE-2025-56568

Open5GS <2.7.5 - DoS

Title source: llm

Description

Assertion failure vulnerability in the PCO (Protocol Configuration Options) parser in the SMF (Session Management Function) component of Open5GS before v2.7.5 allows remote attackers to cause denial of service via specially crafted NGAP messages containing malformed length fields in protocol configuration data.

References (2)

Core 2

Core References

https://github.com/open5gs/open5gs/issues/3969

https://github.com/open5gs/open5gs/commit/d7707879c943d2c952235382154d835b5849d54e

View Patch ZIP pw:eip

Scores

EPSS 0.0007

EPSS Percentile 22.3%

Details

Status published

Published Apr 30, 2026

Tracked Since May 01, 2026