CVE-2026-8288 | Open5GS up to 2.7.7 SMF src/smf/gsm-handler.c n1SmMsg denial of service (Issue 4452)

A vulnerability described as problematic has been identified in Open5GS up to 2.7.7. This affects the function gsm_handle_pdu_session_modification_qos_flow_descriptions of the file src/smf/gsm-handler.c of the component SMF. Executing a manipulation of the argument n1SmMsg can lead to denial of service.

The identification of this vulnerability is CVE-2026-8288. The attack may be launched remotely. Furthermore, there is an exploit available.

The pull request to fix this issue awaits acceptance.VulDB Recent EntriesRead More