CVE-2026-10156 | Open5GS up to 2.7.7 nf-instances Endpoint /lib/sbi/nnrf-handler.c handle_amf_info nf_info_pool resource consumption (Issue 4480)

A vulnerability was found in Open5GS up to 2.7.7. It has been declared as problematic. This affects the function handle_amf_info in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulation of the argument nf_info_pool can lead to resource consumption.

This vulnerability appears as CVE-2026-10156. The attack may be performed from remote. In addition, an exploit is available.

Applying a patch is advised to resolve this issue.

The issue report is flagged as already-fixed.VulDB Recent EntriesRead More