CVE-2026-4240

MEDIUM

Open5GS CCA smf_s6b_sta_cb denial of service

Title source: cna

Description

A vulnerability was determined in Open5GS up to 2.7.6. The affected element is the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b_aaa_cb/smf_s6b_sta_cb of the component CCA Handler. This manipulation causes denial of service. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.7.7 is sufficient to fix this issue. Patch name: 80eb484a6ab32968e755e628b70d1a9c64f012ec. Upgrading the affected component is recommended.

References (8)

Core 8

Core References

Vdb Entry, Technical Description vdb-entry technical-description

VDB-351182 | Open5GS CCA smf_s6b_sta_cb denial of service

https://vuldb.com/?id.351182

Signature, Permissions Required signature permissions-required

VDB-351182 | CTI Indicators (IOB, IOC, TTP, IOA)

https://vuldb.com/?ctiid.351182

Third Party Advisory third-party-advisory

Submit #771361 | Open5GS MME v2.7.6 Improper Authentication

https://vuldb.com/?submit.771361

Issue Tracking issue-tracking

https://github.com/open5gs/open5gs/issues/4343

Exploit exploit issue-tracking

https://github.com/open5gs/open5gs/issues/4343#issue-4021871895

Patch patch

https://github.com/open5gs/open5gs/commit/80eb484a6ab32968e755e628b70d1a9c64f012ec

View Patch ZIP pw:eip

Patch patch

https://github.com/open5gs/open5gs/releases/tag/v2.7.7

Product product

https://github.com/open5gs/open5gs/

Scores

CVSS v3 5.3

EPSS 0.0053

EPSS Percentile 40.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-404

Status published

Products (9)

n/a/Open5GS 2.7.0

n/a/Open5GS 2.7.1

n/a/Open5GS 2.7.2

n/a/Open5GS 2.7.3

n/a/Open5GS 2.7.4

n/a/Open5GS 2.7.5

n/a/Open5GS 2.7.6

n/a/Open5GS 2.7.7

open5gs/open5gs < 2.7.7

Published Mar 16, 2026

Tracked Since Mar 16, 2026