Unknown · Openairinterface · CVE-2026-30080
Name of the Vulnerable Software and Affected Versions
OpenAirInterface version 2.2.0
Description
OpenAirInterface version 2.2.0 allows Security Mode Complete without integrity protection. Despite supporting integrity protection configurations (NIA1 and NIA2), the system accepts initial registration requests with only security capability IA0. This security downgrade can enable replay attacks.
Recommendations
Update to a newer version that contains a fix for this vulnerability.