CVE-2026-1736

EUVD-2026-5115

02.02.2026, 01:15

A security vulnerability has been detected in Open5GS up to 2.7.6. Impacted is the function sgwc_s11_handle_create_indirect_data_forwarding_tunnel_request of the file /src/sgwc/s11-handler.c of the component SGWC. Such manipulation leads to reachable assertion. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. A patch should be applied to remediate this issue. The issue report is flagged as already-fixed.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
VulDB	CNA	5.3 MEDIUM				CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 9%

Affected Products (NVD)

Vendor	Product	Version
open5gs	open5gs	𝑥 ≤ 2.7.6

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-617 - Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References

https://github.com/open5gs/open5gs/

https://github.com/open5gs/open5gs/issues/4270

https://github.com/open5gs/open5gs/issues/4270#event-21968624624

https://github.com/open5gs/open5gs/issues/4270#issue-3795141303

https://vuldb.com/?ctiid.343635

https://vuldb.com/?id.343635

https://vuldb.com/?submit.741191