CVE-2025-15176 | Open5GS up to 2.7.5 PFCP Session Establishment Request lib/pfcp/rule-match.c assertion (Issue 4180)

A vulnerability described as problematic has been identified in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp_pdr_rule_find_by_packet of the file lib/pfcp/rule-match.c of the component PFCP Session Establishment Request Handler. Executing manipulation can lead to reachable assertion.

This vulnerability is registered as CVE-2025-15176. The attack needs to be launched locally. Furthermore, an exploit is available.

Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More