CVE-2026-10157 | Open5GS up to 2.7.6 NGAP PathSwitchRequest Message src/amf/ngap-handler.c improper authentication (Issue 4393)

Inserito da Angelo Barbosa | Mag 30, 2026 | CVE

A vulnerability was found in Open5GS up to 2.7.6. It has been rated as critical. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation leads to improper authentication.

This vulnerability is traded as CVE-2026-10157. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is suggested to install a patch to address this issue.

CVE-2026-10157 | Open5GS up to 2.7.6 NGAP PathSwitchRequest Message src/amf/ngap-handler.c improper authentication (Issue 4393)

Post correlati

CVE-2025-33249 | NVIDIA NeMo Framework command injection

CVE-2024-39694 | DuendeSoftware IdentityServer up to 6.0.4/6.1.7/6.2.4/6.3.9/7.0.5 redirect (GHSA-ff4q-64jc-gx98)

CVE-2024-25677 | Min 1.29.0 XML Document unknown vulnerability

CVE-2023-50208 | D-Link G416 ovpncfg stack-based overflow (ZDI-23-1824)