CVE-2026-10157
HIGHOpen5GS NGAP PathSwitchRequest Message ngap-handler.c improper authentication
Title source: cnaDescription
A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The identifier of the patch is a188e36b1741ffc2252133f59b1bda4f14d3cb5c. It is suggested to install a patch to address this issue.
References (8)
Core 8
Core References
Vdb Entry vdb-entry
VDB-367410 | Open5GS NGAP PathSwitchRequest Message ngap-handler.c improper authentication
https://vuldb.com/vuln/367410
Signature, Permissions Required signature
permissions-required
VDB-367410 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/367410/cti
Third Party Advisory third-party-advisory
CVE-2026-10157 | CVE Analysis and Report
https://vuldb.com/cve/CVE-2026-10157
Third Party Advisory third-party-advisory
Submit #818939 | open5gs Open5GS v2.7.6 Improper Authentication
https://vuldb.com/submit/818939
Exploit exploit
issue-tracking
https://github.com/open5gs/open5gs/issues/4393
Patch issue-tracking
patch
https://github.com/open5gs/open5gs/pull/4557
Product product
https://github.com/open5gs/open5gs/
Scores
CVSS v3
7.3
EPSS
0.0042
EPSS Percentile
33.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-287
Status
published
Products (7)
None/Open5GS
2.7.0
None/Open5GS
2.7.1
None/Open5GS
2.7.2
None/Open5GS
2.7.3
None/Open5GS
2.7.4
None/Open5GS
2.7.5
None/Open5GS
2.7.6
Published
May 31, 2026
Tracked Since
May 31, 2026