Skip to main content

Open5GS CVE-2026-7586

| EUVD-2026-26680 LOW
Improper Resource Shutdown or Release (CWE-404)
2026-05-01 cna@vuldb.com
Denial Of Service Open5gs
2.1
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.1 LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

4
Analysis Generated
May 01, 2026 - 16:30 vuln.today
EUVD ID Assigned
May 01, 2026 - 16:22 euvd
EUVD-2026-26680
Analysis Generated
May 01, 2026 - 16:22 vuln.today
CVE Published
May 01, 2026 - 16:16 nvd
LOW 2.1

DescriptionCVE.org

A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogs_id_get_value of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

AnalysisAI

Denial of service in Open5GS up to version 2.7.7 affects the AMF (Access and Mobility Function) component, specifically the ogs_id_get_value function in nudm-handler.c, allowing remote authenticated attackers to cause service unavailability. Publicly available exploit code exists, and the vulnerability has been reported to the project via GitHub issue #4405 without vendor acknowledgment or patch release at time of analysis.

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to 5G network or spoof peer NF
Delivery
Craft NUDM request with missing identifier
Exploit
Send to AMF ogs_id_get_value function
Execution
Trigger improper resource handling
Impact
AMF service unavailable
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires authenticated network access to the AMF NUDM interface (PR:L in CVSS vector). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS v4.0 score of 2.1 is low, reflecting AV:N (network accessible), AC:L (low complexity), and PR:L (requires authenticated login), but importantly VA:L (low availability impact) and all other impacts rated as None. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker with valid 5G subscriber credentials or access to a peer network function (e.g., UDM, HSS, or external 3GPP interface) sends a crafted NUDM request containing a malformed or missing identifier value to the AMF ogs_id_get_value function. The function fails to handle the missing resource properly, triggering a denial of service condition that crashes the AMF process or causes it to consume excessive resources, rendering that AMF instance unavailable and potentially cascading failures in subscriber authentication and mobility management.
Remediation No vendor-released patch has been identified at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-7586 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy