CVE-2026-7780
Denial of Service in Open5GS due to udm_state_operational
Publication date: 2026-05-04
Last updated on: 2026-05-04
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| open5gs | open5gs | to 2.7.7 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-404 | The product does not release or incorrectly releases a resource before it is made available for re-use. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Open5GS up to version 2.7.7, specifically in the function udm_state_operational within the file /src/udm/udm-sm.c of the smf-registrations Endpoint component.
An attacker can remotely manipulate this function, which can lead to a denial of service condition.
The exploit for this vulnerability has been made publicly available, increasing the risk of attacks.
How can this vulnerability impact me? :
The primary impact of this vulnerability is the potential for a denial of service (DoS) attack.
An attacker can remotely exploit this weakness to disrupt the normal operation of the affected Open5GS component, potentially causing service outages or interruptions.