Medium severity4.3NVD Advisory· Published May 11, 2026· Updated May 14, 2026

CVE-2026-8291

Description

A weakness has been identified in Open5GS up to 2.7.7. Impacted is the function ogs_nnrf_nfm_handle_nf_profile of the file lib/sbi/nnrf-handler.c of the component NRF. This manipulation causes denial of service. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. The pull request to fix this issue awaits acceptance.

Affected products

Open5gs/Open5gsreferences

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/open5gs/open5gs/issues/4456nvdExploitIssue Tracking
github.com/open5gs/open5gs/pull/4534nvdExploitIssue TrackingPatch
vuldb.com/submit/808508nvdThird Party AdvisoryVDB Entry
vuldb.com/vuln/362588nvdThird Party AdvisoryVDB Entry
vuldb.com/vuln/362588/ctinvdPermissions RequiredVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000