CVE-2025-15528

MEDIUM 5.3

Open5GS GTPv2 Bearer Response denial of service

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 98f76e98df35cd6a35e868aa62715db7f8141ac1. A patch should be applied to remediate this issue.

CWE	CWE-404
Vendor	n/a
Product	open5gs
Published	Jan 16, 2026
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for n/a open5gs

Be the first to know when new medium vulnerabilities affecting n/a open5gs are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

n/a / Open5GS

2.7.0 2.7.1 2.7.2 2.7.3 2.7.4 2.7.5 2.7.6

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/?id.341595 vuldb.com: https://vuldb.com/?ctiid.341595 vuldb.com: https://vuldb.com/?submit.728128 vuldb.com: https://vuldb.com/?submit.729359 vuldb.com: https://vuldb.com/?submit.729360 vuldb.com: https://vuldb.com/?submit.738373 github.com: https://github.com/open5gs/open5gs/issues/4225 github.com: https://github.com/open5gs/open5gs/issues/4225#issue-3769531006 github.com: https://github.com/open5gs/open5gs/commit/98f76e98df35cd6a35e868aa62715db7f8141ac1 github.com: https://github.com/open5gs/open5gs/

Credits

🔍 ZiyuLin (VulDB User)