CVE-2026-8746 | Open5GS up to 2.7.7 NRF nghttp2-server.c discover_handler use after free (Issue 4476)

Inserito da Angelo Barbosa | Mag 16, 2026 | CVE

A vulnerability labeled as problematic has been found in Open5GS up to 2.7.7. Affected by this issue is the function discover_handler in the library /lib/sbi/nghttp2-server.c of the component NRF. The manipulation results in use after free.

This vulnerability is reported as CVE-2026-8746. The attack can be launched remotely. Moreover, an exploit is present.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-8746 | Open5GS up to 2.7.7 NRF nghttp2-server.c discover_handler use after free (Issue 4476)

Post correlati

CVE-2025-11914 | Shenzhen Ruiming Technology Streamax Crocus 1.3.40 DeviceFileReport.do?Action=Download download FilePath path traversal

CVE-2024-5090 | SiteOrigin Widgets Bundle Plugin up to 1.61.1 on WordPress Blog Widget cross site scripting

CVE-2024-1726 | Quarkus RESTEasy Reactive resource consumption

CVE-2024-36012 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 Bluetooth kernel/locking/mutex.c msft_do_close use after free