CVE-2026-8119 | Open5GS up to 2.7.7 NSSF nghttp2-server.c ogs_sbi_stream_find_by_id denial of service (Issue 4431)

May 7, 2026 Yanac

A vulnerability was found in Open5GS up to 2.7.7. It has been classified as problematic. Impacted is the function ogs_sbi_stream_find_by_id in the library /lib/sbi/nghttp2-server.c of the component NSSF. Performing a manipulation results in denial of service.

This vulnerability is known as CVE-2026-8119. Attacking locally is a requirement. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More