Medium severity4.3NVD Advisory· Published May 1, 2026· Updated May 7, 2026

CVE-2026-7585

Description

A vulnerability was determined in Open5GS up to 2.7.7. The impacted element is the function amf_nudm_sdm_handle_provisioned of the file /src/amf/nudm-handler.c of the component AMF. Executing a manipulation can lead to denial of service. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

Open5gs/Open5gsreferences2 versions
(expand)+ 1 more
- (no CPE)
- cpe:2.3:a:open5gs:open5gs:*:*:*:*:*:*:*:*range: <=2.7.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

vuldb.com/submit/804334nvdThird Party AdvisoryVDB Entry
vuldb.com/submit/804335nvdThird Party AdvisoryVDB Entry
vuldb.com/submit/804337nvdThird Party AdvisoryVDB Entry
vuldb.com/vuln/360533nvdThird Party AdvisoryVDB Entry
github.com/open5gs/open5gs/issues/4403nvdIssue Tracking
vuldb.com/vuln/360533/ctinvdPermissions RequiredVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000