CVE-2026-8289 | Open5GS up to 2.7.7 SMF /src/smf/nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf qosFlowProfile denial of service (Issue 4453)

Inserito da Angelo Barbosa | Mag 11, 2026 | CVE

A vulnerability classified as problematic has been found in Open5GS up to 2.7.7. This vulnerability affects the function smf_nsmf_handle_update_data_in_vsmf of the file /src/smf/nsmf-handler.c of the component SMF. The manipulation of the argument qosFlowProfile leads to denial of service.

This vulnerability is referenced as CVE-2026-8289. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-8289 | Open5GS up to 2.7.7 SMF /src/smf/nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf qosFlowProfile denial of service (Issue 4453)

Post correlati

CVE-2024-37520 | RadiusTheme ShopBuilder Plugin up to 2.1.12 on WordPress path traversal

CVE-2024-13523 | shenyanzhi MemorialDay Plugin up to 1.0.4 on WordPress cross-site request forgery

CVE-2024-53941 | Victure RX1800 WiFi 6 Router EN_V1.0.0_r12_110933 Wi-Fi PSK prng seed

CVE-2025-0796 | kevin-brent Mortgage Lead Capture System Plugin up to 8.2.10 on WordPress Setting wprequal_reset_defaults cross-site request forgery