CVE-2025-15156 | omec-project UPF up to 2.1.3-dev PFCP Session Establishment Request messages_session.go handleSessionEstablishmentRequest null pointer dereference (Issue 979)

A vulnerability classified as problematic has been found in omec-project UPF up to 2.1.3-dev. This affects the function handleSessionEstablishmentRequest of the file /pfcpiface/pfcpiface/messages_session.go of the component PFCP Session Establishment Request Handler. This manipulation causes null pointer dereference.

This vulnerability appears as CVE-2025-15156. The attack may be initiated remotely. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet. If you want to get best quality of vulnerability data, you may have to visit VulDB.VulDB Recent EntriesRead More