CVE-2026-7535

Open5GS transfer-update denial of service

CVSS 5.3 MEDIUMEPSS 0.3%CWE-404

A vulnerability was found in Open5GS up to 2.7.7. This affects the function amf_namf_comm_handle_registration_status_update_request in the library /lib/app/ogs-init.c of the file /namf-comm/v1/ue-contexts/{ueContextId}/transfer-update. Performing a manipulation of the argument ueContextId results in denial of service. The attack can be initiated remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Productos afectados

n/a · Open5GS

PoCs públicas encontradas — 1

cve_referencegithub.com/open5gs/open5gs/issues/4399no verificado

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/open5gs/open5gs/https://github.com/open5gs/open5gs/issues/4399 https://vuldb.com/submit/804291 https://vuldb.com/submit/804303 https://vuldb.com/vuln/360352 https://vuldb.com/vuln/360352/cti