PT-2026-1863 · Openairinterface · Openairinterface Cn5G Amf
Published
2026-01-07
·
Updated
2026-01-07
·
CVE-2025-66786
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
OpenAirInterface CN5G AMF versions through 2.0.1
Description
A logical error exists in the processing of JSON format requests. Remote attackers can send malicious JSON data to the AMF's SBI interface, potentially causing a denial-of-service condition. The SBI interface is the target for exploitation. The vulnerable data is sent via JSON format requests.
Recommendations
Versions prior to 2.0.1 are affected.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openairinterface Cn5G Amf