VYPR
Medium severity4.3NVD Advisory· Published May 31, 2026· Updated Jun 1, 2026

CVE-2026-10156

CVE-2026-10156

Description

A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handle_amf_info in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulation of the argument nf_info_pool can lead to resource consumption. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. Applying a patch is advised to resolve this issue. The issue report is flagged as already-fixed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Open5gs/Open5gsreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=2.7.7

Patches

Vulnerability mechanics

References

4

News mentions

1