CVE-2026-30077

High CVSS: 7.5

OpenAirInterface V2.2.0 AMF crashes when it fails to decode the message. Not all decode failures result in a crash. But the crash is consistent for particular inputs. An example input in hex stream is 80 00 00 0E 00 00 01 00 0F 80 02 02 40 00 58 00 01 88.

Vendor

Openairinterface

Product

Openairinterface

CWE

CWE-20

Yayın Tarihi

2026-03-30 18:16:18

Güncelleme

2026-04-06 15:59:48

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-20 Openairinterface HIGH Openairinterface 2026

Referanslar

https://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-amf/-/issues/76 https://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-amf/-/merge_requests/414

Benzer Kayıtlar

High

CVE-2025-66786

OpenAirInterface CN5G AMF

High

CVE-2025-65805

OpenAirInterface CN5G AMF

Medium

CVE-2025-26265

A segmentation fault in openairinterface5g v2.1.0 allows attackers to cause a Denial of Service (DoS) via a crafted UE C…