CVE-2025-15532

Description

A security flaw has been discovered in Open5GS up to 2.7.5. This issue affects some unknown processing of the component Timer Handler. The manipulation results in resource consumption. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The patch is identified as c7c131f8d2cb1195ada5e0e691b6868ebcd8a845. It is best practice to apply a patch to resolve this issue.

PUBLISHED Reserved 2026-01-16 | Published 2026-01-17 | Updated 2026-02-26 | Assigner VulDB

Problem types

Resource Consumption

Denial of Service

Timeline

Credits

ZiyuLin (VulDB User) reporter

References

vuldb.com/?id.341599 (VDB-341599 | Open5GS Timer resource consumption) vdb-entry technical-description

vuldb.com/?ctiid.341599 (VDB-341599 | CTI Indicators (IOB, IOC, TTP)) signature permissions-required

vuldb.com/?submit.729354 (Submit #729354 | Open5GS SGWC v2.7.6 Denial of Service) third-party-advisory

vuldb.com/?submit.729357 (Submit #729357 | Open5GS SGWC v2.7.6 Denial of Service (Duplicate)) third-party-advisory

vuldb.com/?submit.735340 (Submit #735340 | Open5GS SMF v2.7.6 Denial of Service (Duplicate)) third-party-advisory

vuldb.com/?submit.735341 (Submit #735341 | Open5GS SGWC v2.7.6 Denial of Service (Duplicate)) third-party-advisory

vuldb.com/?submit.735342 (Submit #735342 | Open5GS SGWC v2.7.6 Denial of Service (Duplicate)) third-party-advisory

github.com/open5gs/open5gs/issues/4220 issue-tracking

github.com/open5gs/open5gs/issues/4221 issue-tracking

github.com/open5gs/open5gs/issues/4220 exploit issue-tracking

github.com/...ommit/c7c131f8d2cb1195ada5e0e691b6868ebcd8a845 patch

github.com/open5gs/open5gs/ product

cve.org (CVE-2025-15532)

nvd.nist.gov (CVE-2025-15532)

Download JSON