CVE-2025-25774

Name of the Vulnerable Software and Affected Versions: Open5GS version 2.7.2

Description: An issue in Open5GS can cause an exception in the AMF's internal state machine when a UE switches between two gNBs and sends a handover request at a specific time. This can lead to an AMF crash, resulting in a Denial of Service (DoS).

Recommendations: For Open5GS version 2.7.2, as a temporary workaround, consider implementing measures to prevent or handle the exception in the AMF's internal state machine when a UE sends a handover request during a gNB switch. At the moment, there is no information about a newer version that contains a fix for this vulnerability.