CVE-2026-4988

LOW NVD

CVSS Score 3.7

Severity LOW

Published Mar 27, 2026

Vendor unknown

Description

A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b of the component CCA Message Handler. The manipulation results in denial of service. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitability is assessed as difficult. The exploit has been released to the public and may be used for attacks.

References

https://github.com/open5gs/open5gs/
https://github.com/open5gs/open5gs/issues/4342
https://github.com/open5gs/open5gs/issues/4342#issue-4021772232
https://vuldb.com/?ctiid.353875
https://vuldb.com/?id.353875