Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| NewPlane | open5GS | affected |
|
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Open5gs | Open5gs | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 03 Feb 2026 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-798 | |
| CPEs | cpe:2.3:a:open5gs:open5gs:*:*:*:*:*:*:*:* |
Wed, 21 Jan 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 21 Jan 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Open5gs
Open5gs open5gs |
|
| Vendors & Products |
Open5gs
Open5gs open5gs |
Tue, 20 Jan 2026 21:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 20 Jan 2026 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Open 5GS WebUI uses a hard-coded JWT signing key (change-me) whenever the environment variable JWT_SECRET_KEY is unset | |
| Title | Open 5GS WebUI uses a hard-coded JWT signing key | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: certcc
Published:
Updated: 2026-01-21T16:47:50.399Z
Reserved: 2026-01-05T20:12:06.482Z
Link: CVE-2026-0622
Vulnrichment
Updated: 2026-01-20T20:27:10.033Z
NVD
Status : Analyzed
Published: 2026-01-20T20:16:01.483
Modified: 2026-02-03T21:38:57.637
Link: CVE-2026-0622
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-18T04:45:36Z