Vulnerabilities

CVE-2025-15176 - Open5GS PFCP Session Establishment Request rule-match.c ogs_pfcp_pdr_rule_find_b...

2025-12-29 0 views admin

CVE ID : CVE-2025-15176 Published : Dec. 29, 2025, 7:15 a.m. | 41 minutes ago Description : A flaw has been found in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp_pdr_rule_find_by_packet of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing manipulation can lead to reachable assertion. It is possible to launch the attack remotely. The exploit has been published and may be used. This patch is called b72d8349980076e2c033c8324f07747a86eea4f8. Applying a patch is advised to resolve this issue. Severity: 5.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-15176

Severity

MEDIUM

Published

Dec. 29, 2025

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15176medium

CVE-2025-15176 - Open5GS PFCP Session Establishment Request rule-match.c ogs_pfcp_pdr_rule_find_b...

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-27629 - InvenTree Vulnerable to Server Side Template Injection (SSTI)

CVE-2026-27628 - pypdf has a possible infinite loop when loading circular /Prev entries in cross-...

CVE-2026-27626 - OliveTin vulnerable to OS Command Injection via `password` argument type and web...

CVE-2026-27621 - TypiCMS Core has Stored Cross-Site Scripting (XSS) via SVG File Upload

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting