CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/05/17 10:15 a.m.•14 views

CVE-2026-8746

Open5GS up to 2.7.7 contains a use-after-free in NRF’s discover_handler function ( /lib/sbi/nghttp2-server.c ). The vulnerability can be triggered remotely; public exploit exists according to the description. Affected component: NRF within Open5GS. Exploit maturity is noted as PROOF-OF-CONCEPT in...

6.5CVSS5.4AI score0.00367EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/05/17 10:15 a.m.•6 views

CVE-2026-8746 Open5GS NRF nghttp2-server.c discover_handler use after free

5.3CVSS5.4AI score0.00367EPSS

Cvelist•added 2026/05/17 10:15 a.m.•43 views

CVE-2026-8746 Open5GS NRF nghttp2-server.c discover_handler use after free

5.3CVSS0.00367EPSS

ATTACKERKB•added 2026/05/17 10:15 a.m.•5 views

CVE-2026-8746

5.3CVSS5.4AI score0.00367EPSS

EUVD•added 2026/05/17 9:45 a.m.•11 views

EUVD-2026-30693

A vulnerability was identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogstimeradd in the library /src/ausf/nausf-handler.c of the component AUSF. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit is publicly available an...

5.3CVSS5.5AI score0.00372EPSS

CVE•added 2026/05/17 9:45 a.m.•13 views

CVE-2026-8745

Technical details are not publicly available in the provided documents; no information on affected versions, root cause, or remediation beyond the description. Monitor for updates.

6.5CVSS5.5AI score0.00372EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/05/17 9:45 a.m.•6 views

CVE-2026-8745

5.3CVSS5.5AI score0.00372EPSS

Vulnrichment•added 2026/05/17 9:45 a.m.•5 views

CVE-2026-8745 Open5GS AUSF nausf-handler.c ogs_timer_add denial of service

5.3CVSS5.5AI score0.00372EPSS

Cvelist•added 2026/05/17 9:45 a.m.•38 views

CVE-2026-8745 Open5GS AUSF nausf-handler.c ogs_timer_add denial of service

5.3CVSS0.00372EPSS

Cvelist•added 2026/05/17 9:15 a.m.•39 views

CVE-2026-8744 Open5GS NRF context.c ogs_sbi_nf_service_add denial of service

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function ogssbisubscriptiondataadd/ogssbinfserviceadd in the library /lib/sbi/context.c of the component NRF. Executing a manipulation can lead to denial of service. It is possible to launch the attack remotely. The exploit ha...

5.3CVSS0.00455EPSS

ATTACKERKB•added 2026/05/17 9:15 a.m.•7 views

CVE-2026-8744

5.3CVSS5.4AI score0.00455EPSS

EUVD•added 2026/05/17 9:15 a.m.•11 views

EUVD-2026-30690

5.3CVSS5.4AI score0.00455EPSS

Vulnrichment•added 2026/05/17 9:15 a.m.•7 views

CVE-2026-8744 Open5GS NRF context.c ogs_sbi_nf_service_add denial of service

5.3CVSS5.4AI score0.00455EPSS

CVE•added 2026/05/17 9:0 a.m.•15 views

CVE-2026-8743

Open5GS AMF/MME (Open5GS up to version 2.7.6) is affected by CVE-2026-8743 in the function ran_ue_find_by_amf_ue_ngap_id (src/amf/context.c). The issue causes improper authorization and can be triggered remotely. Exploit details have been made public. A patch is available (patch identifier: 5746b...

Exploits1References7Affected Software1

Cvelist•added 2026/05/17 9:0 a.m.•37 views

CVE-2026-8743 Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id improper authorization

A vulnerability was found in Open5GS up to 2.7.6. This impacts the function ranuefindbyamfuengapid of the file src/amf/context.c of the component AMF/MME. Performing a manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit has been made public...

6.5CVSS0.00224EPSS

ATTACKERKB•added 2026/05/17 9:0 a.m.•5 views

CVE-2026-8743

Vulnrichment•added 2026/05/17 9:0 a.m.•6 views

CVE-2026-8743 Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id improper authorization

EUVD•added 2026/05/17 9:0 a.m.•17 views

EUVD-2026-30691