Description
A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function pcf_nbsf_management_handle_register of the file src/pcf/nbsf-handler.c of the component sm-policies Endpoint. Such manipulation leads to denial of service. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-05-10
Score: 6.9 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in the pcf_nbsf_management_handle_register function of Open5GS’ sm-policies endpoint causes a denial of service through improper resource handling. The vulnerability matches CWE‑404 and allows an attacker to trigger unresponsiveness or crash of the API service, disrupting availability for all users of the affected Open5GS deployment.

Affected Systems

Open5GS releases through version 2.7.7 are susceptible. The vulnerability is present in the src/pcf/nbsf-handler.c component of the sm‑policies endpoint and affects all installations that have not applied any workaround or patch after that point.

Risk and Exploitability

The CVSS score of 6.9 indicates a moderate impact level, and the publicly disclosed exploit means attackers can reach the vulnerable endpoint from the Internet. While the EPSS score is not available, the known public availability of the exploit and the absence from the CISA KEV catalog suggest the risk is still significant but not immediately trending upward. Potential exploitation requires remote access to the sm‑policies API; an attacker could repeatedly register NBSF services, exhausting resources and forcing a service outage.

Generated by OpenCVE AI on May 10, 2026 at 05:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Identify whether the system is running Open5GS 2.7.7 or earlier; if so, wait for an official update and plan an upgrade when a fix becomes available.
  • Apply rate limiting or firewall rules to throttle requests to the sm‑policies /register NBSF endpoint, limiting the number of registration attempts per source to prevent resource exhaustion.
  • If NBSF registration is not required, disable the NBSF registration functionality in the Open5GS configuration to remove the vulnerable endpoint while awaiting a vendor fix.

Generated by OpenCVE AI on May 10, 2026 at 05:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 10 May 2026 03:15:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function pcf_nbsf_management_handle_register of the file src/pcf/nbsf-handler.c of the component sm-policies Endpoint. Such manipulation leads to denial of service. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Title Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_management_handle_register denial of service
First Time appeared Open5gs
Open5gs open5gs
Weaknesses CWE-404
CPEs cpe:2.3:a:open5gs:open5gs:*:*:*:*:*:*:*:*
Vendors & Products Open5gs
Open5gs open5gs
References
Metrics cvssV2_0

{'score': 5, 'vector': 'AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 5.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Open5gs Open5gs
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-10T02:30:10.203Z

Reserved: 2026-05-09T07:35:13.650Z

Link: CVE-2026-8222

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-10T03:16:08.690

Modified: 2026-05-10T03:16:08.690

Link: CVE-2026-8222

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-10T05:30:05Z

Weaknesses