CVE-2026-7779

MEDIUM CVSS 4.3 View on NVD ↗

Description

A security flaw has been discovered in Open5GS up to 2.7.7. Affected is the function udm_nudr_dr_handle_subscription_authentication of the file /src/udm/nudr-handler.c of the component authentication-subscription Endpoint. Performing a manipulation results in denial of service. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

References

https://github.com/open5gs/open5gs/
https://github.com/open5gs/open5gs/issues/4418
https://vuldb.com/submit/806249
https://vuldb.com/vuln/360976
https://vuldb.com/vuln/360976/cti

Published: May 04, 2026 21:16 UTC Modified: May 04, 2026 21:16 UTC