CVE-2026-10565NVD

Description

A security flaw has been discovered in Open5GS up to 2.7.6. The impacted element is the function gmm_state_security_mode of the file src/amf/gmm-sm.c of the component NGAP Handover. Performing a manipulation results in race condition. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitability is regarded as difficult. The exploit has been released to the public and may be used for attacks. The pull request to fix this issue awaits acceptance.

Severity Level

LOW (3.1)

Published Date

02/06/2026

Last Modified

02/06/2026

Exploitation Status

????

References

https://vuldb.com/vuln/367672
https://vuldb.com/vuln/367672/cti
https://vuldb.com/cve/CVE-2026-10565
https://vuldb.com/submit/818938
https://github.com/open5gs/open5gs/issues/4497
https://github.com/open5gs/open5gs/pull/4501
https://github.com/user-attachments/files/27111025/N2-SMC-Concurrent.zip
https://github.com/open5gs/open5gs/

Critical Alert 2 Active Exploits Detected Today

CVE Watchtower

CVE-2026-10565NVD

Description

References