Home > Vulnerability Database > CVE-2025-15528

Mend.io Vulnerability Database

CVE-2025-15528

Good to know:

Date: January 16, 2026

A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 98f76e98df35cd6a35e868aa62715db7f8141ac1. A patch should be applied to remediate this issue.

Severity Score

5.3

Related Resources (8)

Url: https://github.com/open5gs/open5gs/issues/4225#issue-3769531006

Url: https://vuldb.com/?submit.728128

Url: https://github.com/open5gs/open5gs/commit/98f76e98df35cd6a35e868aa62715db7f8141ac1

Url: https://github.com/open5gs/open5gs/issues/4225

Url: https://vuldb.com/?id.341595

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-15528

Url: https://vuldb.com/?ctiid.341595

Url: https://www.mend.io/vulnerability-database/CVE-2025-15528

Severity Score

5.3

Weakness Type (CWE)

Improper Resource Shutdown or Release

CWE-404

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

CVSS v2

Base Score:	5.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2025-15528

Good to know:

Date: January 16, 2026

Severity Score

Related Resources (8)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?