CVE-2025-8802

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-8802

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8802.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-8802

Published

2025-08-10T09:15:27.430Z

Modified

2026-04-12T22:06:17.950726Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A vulnerability was determined in Open5GS up to 2.7.5. This vulnerability affects the function smfstateoperational of the file src/smf/smf-sm.c of the component SMF. The manipulation of the argument stream leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version v2.7.6 is able to address this issue. The patch is identified as f168f7586a4fa536cee95ae60ac437d997f15b97. It is recommended to upgrade the affected component.

References

Affected packages

Git / github.com/open5gs/open5gs

Affected ranges

Type

GIT

Repo

https://github.com/open5gs/open5gs

Events

Introduced

Fixed

d9d3abdd480be96fac3bc8a997e83446648763ca

Fixed

f168f7586a4fa536cee95ae60ac437d997f15b97

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.7.6"
        }
    ]
}

Affected versions

v0.*

v0.1.0

v0.1.1

v0.2.0

v0.3.0

v0.3.1

v0.3.10

v0.3.2

v0.3.3

v0.3.4

v0.3.5

v0.3.6

v0.3.8

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.5.0

v0.5.1

v0.5.2

v1.*

v1.0.0

v1.1.0

v1.2.0

v1.2.1

v1.2.2

v1.2.3

v1.2.4

v1.3.0

v2.*

v2.0.0

v2.0.18

v2.0.22

v2.1.0

v2.1.1

v2.1.3

v2.1.4

v2.1.5

v2.1.7

v2.2.0

v2.2.1

v2.2.6

v2.2.7

v2.2.8

v2.2.9

v2.3.0

v2.3.2

v2.3.6

v2.4.0

v2.4.1

v2.4.3

v2.4.4

v2.4.5

v2.4.7

v2.4.8

v2.4.9

v2.6.1

v2.6.2

v2.6.3

v2.6.4

v2.6.6

v2.7.0

v2.7.1

v2.7.2

v2.7.5

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8802.json"

vanir_signatures_modified

"2026-04-12T22:06:17Z"

vanir_signatures

[
    {
        "signature_version": "v1",
        "deprecated": false,
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "169218291857261574919084410115827097851",
                "126946146197663701800758979976462057901",
                "112840824232815472705789060355701914392",
                "185308639816625003406615761798059480420",
                "242519269615722316689598223337210413079",
                "40219360902801567701633408437355797692"
            ]
        },
        "source": "https://github.com/open5gs/open5gs/commit/f168f7586a4fa536cee95ae60ac437d997f15b97",
        "id": "CVE-2025-8802-db5652f2",
        "signature_type": "Line",
        "target": {
            "file": "src/smf/smf-sm.c"
        }
    },
    {
        "signature_version": "v1",
        "deprecated": false,
        "digest": {
            "length": 22877.0,
            "function_hash": "281041021090372779362852975607999866054"
        },
        "source": "https://github.com/open5gs/open5gs/commit/f168f7586a4fa536cee95ae60ac437d997f15b97",
        "id": "CVE-2025-8802-f624b631",
        "signature_type": "Function",
        "target": {
            "function": "smf_state_operational",
            "file": "src/smf/smf-sm.c"
        }
    }
]