CVE-2026-8187

MEDIUM

A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption. The attack may be performed from remote. The project was informed of the problem early through an issue report but has not responded yet.

CVSS v3.1 Score

5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
NETWORK
Complexity
LOW
Privileges
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW
Published: 5/9/2026Modified: 5/13/2026

Related Intelligence (1)

HIGHVulnerability

NVD HIGH: CVE-2026-8187 — A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u...

A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption. The attack may be performed from remote. The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-8187
NIST NVD

References (6)

https://github.com/open5gs/open5gs/Producthttps://github.com/open5gs/open5gs/issues/4492ExploitIssue Trackinghttps://vuldb.com/submit/800025Third Party AdvisoryVDB Entryhttps://vuldb.com/vuln/362339Third Party AdvisoryVDB Entryhttps://vuldb.com/vuln/362339/ctiPermissions RequiredVDB Entryhttps://github.com/open5gs/open5gs/issues/4492ExploitIssue Tracking