NIXPKGS-2026-1669

GitHub issue published on

Permalink CVE-2026-8743

2.1 LOW

CVSS version (CVSS): 4.0
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Attack Requirement (AT): None (N)
Privileges Required (PR): Low (L)
User Interaction (UI): None (N)
Vulnerable System Impact Confidentiality (VC): Low (L)
Vulnerable System Impact Integrity (VI): Low (L)
Vulnerable System Impact Availability (VA): Low (L)
Subsequent System Impact Confidentiality (SC): None (N)
Subsequent System Impact Integrity (SI): None (N)
Subsequent System Impact Availability (SA): None (N)
Exploit Maturity (E): POC (P)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Attack Requirement (MAT): None (N)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): None (N)
Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
Modified Vulnerable System Impact Integrity (MVI): Low (L)
Modified Vulnerable System Impact Availability (MVA): Low (L)
Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
Modified Subsequent System Impact Integrity (MSI): Negligible (N)
Modified Subsequent System Impact Availability (MSA): Negligible (N)
Safety (S): Not Defined (X)
Automatable (AU): Not Defined (X)
Recovery (R): Not Defined (X)
Value Density (V): Not Defined (X)
Vulnerability Response Effort (RE): Not Defined (X)
Provider Urgency (U): Not Defined (X)
Confidentiality Req. (CR): Not Defined (X)
Integrity Req. (IR): Not Defined (X)
Availability Req. (AR): Not Defined (X)

updated 15 hours ago by @LeSuisse Activity log

Created suggestion 20 hours ago
@LeSuisse ignored
2 references
- https://github.com/open5gs/open5gs/
- https://github.com/open5gs/open5gs/comm…
16 hours ago
@LeSuisse ignored package open5gs-webui 16 hours ago
@LeSuisse ignored
2 references
- VDB-364330 | CTI Indicators (IOB, IOC, …
- Submit #814559 | Open5GS 2.7.6 Incorrec…
16 hours ago
@LeSuisse accepted 16 hours ago
@LeSuisse published on GitHub 15 hours ago

Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id improper authorization

A vulnerability was found in Open5GS up to 2.7.6. This impacts the function ran_ue_find_by_amf_ue_ngap_id of the file src/amf/context.c of the component AMF/MME. Performing a manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The patch is named 5746b8576cfceec18ed87eb7d8cf11b1fb4cd8b1. It is suggested to install a patch to address this issue.

References

VDB-364330 | Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id improper authorization vdb-entrytechnical-description
https://github.com/open5gs/open5gs/issues/4498 issue-trackingexploit
https://github.com/open5gs/open5gs/pull/4553 issue-trackingpatch

Ignored references (4)

https://github.com/open5gs/open5gs/ product
https://github.com/open5gs/open5gs/commit/5746b8576cfceec18ed87eb7d8cf11b1fb4cd… patch
VDB-364330 | CTI Indicators (IOB, IOC, TTP, IOA) permissions-requiredsignature
Submit #814559 | Open5GS 2.7.6 Incorrect Authorization third-party-advisory

Affected products

Open5GS

==2.7.1
==2.7.0
==2.7.4
==2.7.2
==2.7.3
==2.7.5
==2.7.6

Matching in nixpkgs

pkgs.open5gs

4G/5G core network components

nixos-unstable 2.7.7
- nixpkgs-unstable 2.7.7
- nixos-unstable-small 2.7.7
nixos-25.11 2.7.7
- nixos-25.11-small 2.7.7
- nixpkgs-25.11-darwin 2.7.7

Ignored packages (1)

pkgs.open5gs-webui