CVE-2026-1521

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-1521

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-1521.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-1521

Published

2026-01-28T15:16:17.493Z

Modified

2026-03-14T15:05:42.071540Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A security flaw has been discovered in Open5GS up to 2.7.6. This affects the function sgwcs5chandlebearerresourcefailureindication of the file src/sgwc/s5c-handler.c of the component SGWC. Performing a manipulation results in denial of service. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks. The patch is named 69b53add90a9479d7960b822fc60601d659c328b. It is recommended to apply a patch to fix this issue.

References

Affected packages

Git / github.com/open5gs/open5gs

Affected ranges

Type

GIT

Repo

https://github.com/open5gs/open5gs

Events

Introduced

Last affected

d9d3abdd480be96fac3bc8a997e83446648763ca

Fixed

69b53add90a9479d7960b822fc60601d659c328b

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.7.6"
        }
    ]
}

Affected versions

v0.*

v0.1.0

v0.1.1

v0.2.0

v0.3.0

v0.3.1

v0.3.10

v0.3.11

v0.3.2

v0.3.3

v0.3.4

v0.3.5

v0.3.6

v0.3.7

v0.3.8

v0.3.9

v0.4.0

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.5.0

v0.5.1

v0.5.2

v1.*

v1.0.0

v1.1.0

v1.2.0

v1.2.1

v1.2.2

v1.2.3

v1.2.4

v1.3.0

v2.*

v2.0.0

v2.0.18

v2.0.22

v2.1.0

v2.1.1

v2.1.3

v2.1.4

v2.1.5

v2.1.7

v2.2.0

v2.2.1

v2.2.6

v2.2.7

v2.2.8

v2.2.9

v2.3.0

v2.3.1

v2.3.2

v2.3.6

v2.4.0

v2.4.1

v2.4.3

v2.4.4

v2.4.5

v2.4.7

v2.4.8

v2.4.9

v2.6.1

v2.6.2

v2.6.3

v2.6.4

v2.6.6

v2.7.0

v2.7.1

v2.7.2

v2.7.5

v2.7.6

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2026-1521-0fa0087d",
        "target": {
            "file": "src/sgwc/s5c-handler.c",
            "function": "sgwc_s5c_handle_delete_session_response"
        },
        "digest": {
            "length": 1655.0,
            "function_hash": "15508307772982429633011957499214041995"
        },
        "signature_version": "v1",
        "source": "https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2026-1521-12e268d6",
        "target": {
            "file": "src/sgwc/s5c-handler.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "25812427068751860969159990134597307978",
                "7222066163203399397211561522002353510",
                "96942117271000208749064346855104249832",
                "113382261343527669094962999287356753941",
                "25812427068751860969159990134597307978",
                "7222066163203399397211561522002353510",
                "96942117271000208749064346855104249832",
                "135513109587151866415305291539791363890",
                "25812427068751860969159990134597307978",
                "7222066163203399397211561522002353510",
                "96942117271000208749064346855104249832",
                "113382261343527669094962999287356753941",
                "179342029530937546220693424464317231887",
                "168270296695758502613696484442644910245",
                "151740391447207286781117636294302217573",
                "179685029504330156438529145634502608597",
                "298857582282049929916713191002565277261",
                "130585704969285285511167422994750579028",
                "244750286989761738896379403658891274619",
                "33275739632645840872134927330672984445"
            ]
        },
        "signature_version": "v1",
        "source": "https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2026-1521-4b3d43ed",
        "target": {
            "file": "src/sgwc/s5c-handler.c",
            "function": "sgwc_s5c_handle_create_session_response"
        },
        "digest": {
            "length": 6447.0,
            "function_hash": "248441703319746844892426604258065214562"
        },
        "signature_version": "v1",
        "source": "https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2026-1521-91a83e2a",
        "target": {
            "file": "src/sgwc/s5c-handler.c",
            "function": "sgwc_s5c_handle_bearer_resource_failure_indication"
        },
        "digest": {
            "length": 852.0,
            "function_hash": "177637928081034831759304430883841790241"
        },
        "signature_version": "v1",
        "source": "https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2026-1521-a3e407f0",
        "target": {
            "file": "src/sgwc/s5c-handler.c",
            "function": "sgwc_s5c_handle_modify_bearer_response"
        },
        "digest": {
            "length": 3381.0,
            "function_hash": "191995944558783431321902945343140142373"
        },
        "signature_version": "v1",
        "source": "https://github.com/open5gs/open5gs/commit/69b53add90a9479d7960b822fc60601d659c328b"
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-1521.json"