CVE-2026-1737

MEDIUM

Open5GS <2.7.6 - Info Disclosure

Title source: llm

Description

A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function sgwc_s5c_handle_create_bearer_request of the file /src/sgwc/s5c-handler.c of the component CreateBearerRequest Handler. Performing a manipulation results in reachable assertion. Remote exploitation of the attack is possible. The exploit is now public and may be used. To fix this issue, it is recommended to deploy a patch. The issue report is flagged as already-fixed.

References (7)

[Third Party Advisory, VDB Entry] https://vuldb.com/?id.343636

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.343636

[Third Party Advisory, VDB Entry] https://vuldb.com/?submit.741192

[Exploit, Issue Tracking, Vendor Advisory] https://github.com/open5gs/open5gs/issues/4271

[Issue Tracking] https://github.com/open5gs/open5gs/issues/4271#event-21968630023

[Exploit, Issue Tracking, Vendor Advisory] https://github.com/open5gs/open5gs/issues/4271#issue-3795147720

[Product] https://github.com/open5gs/open5gs/

Scores

CVSS v3 5.3

EPSS 0.0013

EPSS Percentile 31.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-617

Status published

Products (1)

open5gs/open5gs < 2.7.6

Published Feb 02, 2026

Tracked Since Feb 18, 2026