CVE-2026-10117 | Open5GS up to 2.7.7 nghttp2-server.c ogs_pool_id_calloc denial of service (Issue 4474)

A vulnerability was found in Open5GS up to 2.7.7 and classified as problematic. This issue affects the function ogs_pool_id_calloc in the library /lib/sbi/nghttp2-server.c. Executing a manipulation can lead to denial of service.

The identification of this vulnerability is CVE-2026-10117. The attack may be launched remotely. Furthermore, there is an exploit available.

It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More