CVE-2026-1737

EUVD-2026-5122

02.02.2026, 02:16

A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function sgwc_s5c_handle_create_bearer_request of the file /src/sgwc/s5c-handler.c of the component CreateBearerRequest Handler. Performing a manipulation results in reachable assertion. Remote exploitation of the attack is possible. The exploit is now public and may be used. To fix this issue, it is recommended to deploy a patch. The issue report is flagged as already-fixed.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
VulDB	CNA	5.3 MEDIUM				CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 23%

Affected Products (NVD)

Vendor	Product	Version
open5gs	open5gs	𝑥 ≤ 2.7.6

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-617 - Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References

https://github.com/open5gs/open5gs/

https://github.com/open5gs/open5gs/issues/4271

https://github.com/open5gs/open5gs/issues/4271#event-21968630023

https://github.com/open5gs/open5gs/issues/4271#issue-3795147720

https://vuldb.com/?ctiid.343636

https://vuldb.com/?id.343636

https://vuldb.com/?submit.741192