SCTP Partial Message Handler Vulnerability in Open5GS Software
CVE-2025-7485

4.8MEDIUM

Key Information:

Vendor: Open5GS
Status: Open5gs
Vendor: CVE Published:; 12 July 2025

🔔 Create Open5GS Vulnerability Alert

What is CVE-2025-7485?

A vulnerability exists in Open5GS up to version 2.7.3, specifically within the SCTP Partial Message Handler's processing functions. This issue can lead to reachable assertion scenarios, potentially compromising the integrity of the application. To mitigate risk, it is advised to apply the provided patch immediately, as exploitation of this vulnerability requires local access.

Affected Version(s)

Open5GS 2.7.0

Open5GS 2.7.1

Open5GS 2.7.2

References

https://vuldb.com/?id.316135

vdb-entrytechnical-description

https://vuldb.com/?ctiid.316135

signaturepermissions-required

https://vuldb.com/?submit.610601

third-party-advisory

CVSS V4

Score:

4.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 12, 2025
Vulnerability Reserved
Jul 11, 2025

Credit

SQ0409 (VulDB User)

.

CVE-2025-7485 : SCTP Partial Message Handler Vulnerability in Open5GS Software