CVE-2026-8746 | Open5GS up to 2.7.7 NRF nghttp2-server.c discover_handler use after free (Issue 4476)

A vulnerability labeled as problematic has been found in Open5GS up to 2.7.7. Affected by this issue is the function discover_handler in the library /lib/sbi/nghttp2-server.c of the component NRF. The manipulation results in use after free.

This vulnerability is reported as CVE-2026-8746. The attack can be launched remotely. Moreover, an exploit is present.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More