CVE-2026-14618

medium

Description

A vulnerability was detected in Open5GS up to 2.7.7. Affected by this vulnerability is the function amf_nnrf_handle_nf_discover of the file src/amf/nnrf-handler.c of the component AMF. The manipulation results in denial of service. The attack may be launched remotely. The exploit is now public and may be used. The patch is identified as fb5f67703de0213fb9c6e6ef3b48b6c1707e9503. It is best practice to apply a patch to resolve this issue.

References

https://vuldb.com/vuln/376135/cti

https://vuldb.com/vuln/376135

https://vuldb.com/submit/844824

https://vuldb.com/cve/CVE-2026-14618

https://github.com/open5gs/open5gs/issues/4517#issuecomment-4589606265

https://github.com/open5gs/open5gs/issues/4517

https://github.com/open5gs/open5gs/

https://github.com/ferrancanellas/open5gs/commit/fb5f67703de0213fb9c6e6ef3b48b6c1707e9503

Details

Source: Mitre, NVD

Published: 2026-07-04

Updated: 2026-07-04

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 4.3

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Severity: Medium

CVSS v4

Base Score: 5.3

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Severity: Medium