CVE-2026-2521 | Open5GS up to 2.7.6 SGW-C sgwc_s5c_handle_create_session_response memory corruption (Issue 4282)

Inserito da Angelo Barbosa | Feb 15, 2026 | CVE

A vulnerability classified as critical was found in Open5GS up to 2.7.6. This issue affects the function sgwc_s5c_handle_create_session_response of the component SGW-C. Executing a manipulation can lead to memory corruption.

This vulnerability appears as CVE-2026-2521. The attack may be performed from remote. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-2521 | Open5GS up to 2.7.6 SGW-C sgwc_s5c_handle_create_session_response memory corruption (Issue 4282)

Post correlati

CVE-2024-21643 | Microsoft.IdentityModel.Protocols.SignedHttpRequest Privilege Escalation

CVE-2025-14186 | Grandstream GXP1625 1.0.7.4 Network Status Page /cgi-bin/api.values.post vpn_ip cross site scripting

CVE-2025-13347 | SourceCodester Train Station Ticketing System 1.0 ajax.php?action=save_user Username sql injection

CVE-2024-4639 | Moxa OnCell G3150A-LTE up to 1.7.7 IPsec Configuration command injection