CVE-2025-8799

Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5

Description: A vulnerability exists in Open5GS that can lead to a denial of service. The issue is related to the amf npcf am policy control build create/amf nsmf pdusession build create sm context function within the AMF component, specifically in the file src/amf/npcf-build.c. This manipulation can be triggered remotely. The exploit for this issue has been publicly disclosed.

Recommendations: Open5GS versions prior to 2.7.6: Upgrade to version 2.7.6 to address this issue.