CVE-2026-4988
Open5GS CCA Message smf_s6b denial of service
CVSS Score
3.7
EPSS Score
0.1%
EPSS Percentile
18th
A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b of the component CCA Message Handler. The manipulation results in denial of service. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitability is assessed as difficult. The exploit has been released to the public and may be used for attacks.
| CWE | CWE-404 |
| Vendor | n/a |
| Product | open5gs |
| Published | Mar 27, 2026 |
| Last Updated | Mar 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for n/a open5gs
Be the first to know when new low vulnerabilities affecting n/a open5gs are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
n/a / Open5GS
2.7.6
References
vuldb.com: https://vuldb.com/?id.353875 vuldb.com: https://vuldb.com/?ctiid.353875 vuldb.com: https://vuldb.com/?submit.771349 github.com: https://github.com/open5gs/open5gs/issues/4342 github.com: https://github.com/open5gs/open5gs/issues/4342#issue-4021772232 github.com: https://github.com/open5gs/open5gs/
Credits
๐ ZiyuLin (VulDB User)