Aggregator

CVE-2026-8746 | Open5GS up to 2.7.7 NRF nghttp2-server.c discover_handler use after free (Issue 4476)

VulDB Recent Entries
1 month 1 week ago
A vulnerability labeled as problematic has been found in Open5GS up to 2.7.7. Affected by this issue is the function discover_handler in the library /lib/sbi/nghttp2-server.c of the component NRF. The manipulation results in use after free. This vulnerability is reported as CVE-2026-8746. The attack can be launched remotely. Moreover, an exploit is present. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8745 | Open5GS up to 2.7.7 AUSF nausf-handler.c ogs_timer_add denial of service (Issue 4472)

VulDB Recent Entries
1 month 1 week ago
A vulnerability identified as problematic has been detected in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogs_timer_add in the library /src/ausf/nausf-handler.c of the component AUSF. The manipulation leads to denial of service. This vulnerability is documented as CVE-2026-8745. The attack can be initiated remotely. Additionally, an exploit exists. The project was informed of the problem early through an issue report but has not responded yet.
vuldb.com

CVE-2026-8744 | Open5GS up to 2.7.7 NRF /lib/sbi/context.c denial of service (4465/4466)

VulDB Recent Entries
1 month 1 week ago
A vulnerability categorized as problematic has been discovered in Open5GS up to 2.7.7. Affected is the function ogs_sbi_subscription_data_add/ogs_sbi_nf_service_add in the library /lib/sbi/context.c of the component NRF. Executing a manipulation can lead to denial of service. This vulnerability is registered as CVE-2026-8744. It is possible to launch the attack remotely. Furthermore, an exploit is available. A patch should be applied to remediate this issue.
vuldb.com

CVE-2026-8743 | Open5GS up to 2.7.6 AMF/MME src/amf/context.c ran_ue_find_by_amf_ue_ngap_id improper authorization (Issue 4498)

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in Open5GS up to 2.7.6. It has been rated as critical. This impacts the function ran_ue_find_by_amf_ue_ngap_id of the file src/amf/context.c of the component AMF/MME. Performing a manipulation results in improper authorization. This vulnerability is cataloged as CVE-2026-8743. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is suggested to install a patch to address this issue.
vuldb.com

CVE-2026-8741 | EMQX up to 6.2.0 QoS 2 PUBLISH Packet emqx_persistent_session_ds.erl race condition

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in EMQX up to 6.2.0. It has been declared as problematic. This affects an unknown function of the file apps/emqx/src/emqx_persistent_session_ds.erl of the component QoS 2 PUBLISH Packet Handler. Such manipulation leads to race condition. This vulnerability is listed as CVE-2026-8741. The attack may be performed from remote. In addition, an exploit is available. The vendor was contacted early about this disclosure.
vuldb.com

Managed ad