What is GHSA-qq7j-v673-3qjh?

GHSA-qq7j-v673-3qjh is a security advisory published by GitHub Security Advisories with Low severity. A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function...

Which CVE IDs does GHSA-qq7j-v673-3qjh cover?

GHSA-qq7j-v673-3qjh covers the following CVE IDs: CVE-2026-8731. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-qq7j-v673-3qjh?

GHSA-qq7j-v673-3qjh has a CVSS v3 base score of 4.3, published by GitHub Security Advisories.

GHSA-qq7j-v673-3qjhLowCVSS 4.3

A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function...

Vendor

GitHub Security Advisories

Published

May 17, 2026

Last Modified

May 17, 2026

🔗 CVE IDs covered (1)

CVE-2026-8731 →

📋 Description

A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogs_sbi_client_add in the library /lib/sbi/client.c of the component NRF. The manipulation of the argument client_pool leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

🔗 References (7)

https://nvd.nist.gov/vuln/detail/CVE-2026-8731
https://github.com/open5gs/open5gs/issues/4464
https://github.com/open5gs/open5gs
https://vuldb.com/submit/808516
https://vuldb.com/vuln/364320
https://vuldb.com/vuln/364320/cti
https://github.com/advisories/GHSA-qq7j-v673-3qjh