CVE-2026-14618 in Open5GSinfo

Summary

by MITRE • 07/04/2026

A vulnerability was detected in Open5GS up to 2.7.7. Affected by this vulnerability is the function amf_nnrf_handle_nf_discover of the file src/amf/nnrf-handler.c of the component AMF. The manipulation results in denial of service. The attack may be launched remotely. The exploit is now public and may be used. The patch is identified as fb5f67703de0213fb9c6e6ef3b48b6c1707e9503. It is best practice to apply a patch to resolve this issue.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Analysis

by VulDB Data Team • 07/04/2026

The vulnerability in Open5GS version 2.7.7 and earlier affects the Access and Mobility Management Function (AMF) component, specifically within the amf_nnrf_handle_nf_discover function located in src/amf/nnrf-handler.c. This represents a critical denial of service weakness that can be exploited remotely by attackers without requiring authentication or privileged access. The flaw resides in how the AMF processes network function discovery requests through the Nnrf_NFDiscovery service, creating a potential pathway for malicious actors to disrupt core 5G network operations.

This vulnerability manifests as a remote denial of service condition that can be triggered through malformed or specially crafted network function discovery requests. The issue stems from inadequate input validation and error handling within the NF discovery handler, allowing attackers to send malicious payloads that cause the AMF process to crash or become unresponsive. The exploit is publicly available and actively being used in the wild, making it particularly dangerous for deployed 5G networks. The vulnerability affects the fundamental network function discovery mechanism that enables proper communication between different 5G components including AMF, NRF, and other network functions.

The operational impact of this vulnerability extends beyond simple service disruption to potentially compromise entire 5G network availability and user connectivity. When exploited successfully, the denial of service condition can prevent legitimate network function discovery requests from being processed, effectively breaking the communication chain within the 5G core network. This affects critical network operations such as user registration, location updates, and mobility management procedures that depend on successful NF discovery. The attack vector through the Nnrf_NFDiscovery interface means that any entity capable of reaching the AMF over the network can potentially trigger this vulnerability.

Security practitioners should immediately apply the patch identified by commit hash fb5f67703de0213fb9c6e6ef3b48b6c1707e9503 to address this vulnerability. This remediation involves strengthening input validation and error handling within the amf_nnrf_handle_nf_discover function to prevent malformed requests from causing process termination. The fix should be applied across all affected Open5GS deployments, particularly in production environments where 5G network availability is critical. Organizations should also implement network monitoring to detect potential exploitation attempts and establish incident response procedures for handling such security incidents.

From a cybersecurity framework perspective, this vulnerability aligns with CWE-20 (Improper Input Validation) and represents a weakness in the AMF's service discovery mechanism that can be leveraged through the ATT&CK technique T1498 (Network Denial of Service). The public availability of exploitation tools increases the risk profile significantly, as it removes the need for advanced technical skills to execute attacks. Network administrators should also consider implementing additional security controls such as rate limiting and access controls on the Nnrf_NFDiscovery interface to reduce the attack surface while the patch is being deployed.

The vulnerability demonstrates the importance of secure coding practices in 5G network implementations, particularly in critical components like the AMF that handle core network functions. Proper error handling and input validation are essential for maintaining system availability and preventing attackers from exploiting design flaws in network protocol implementations. Organizations should conduct thorough testing of patches before deployment to ensure compatibility with existing network configurations while maintaining operational security throughout the remediation process.

This vulnerability highlights the ongoing challenges in securing 5G networks where complex interdependencies between multiple network functions can create cascading failure scenarios. The AMF's role as a central component in 5G core networks makes it a prime target for attackers seeking to disrupt service availability, emphasizing the need for robust security measures throughout the 5G architecture. Regular security assessments and vulnerability management processes should be implemented to identify and remediate similar weaknesses before they can be exploited by malicious actors.

Responsible

VulDB

Disclosure

07/04/2026

Moderation

accepted

CPE

ready

Exploit

Download

EPSS

0.00316

KEV

no

Activities

very low

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!