CVE-2026-30080

Exploit

EPSS 0.25%
Veröffentlicht 08.04.2026 00:00:00
Zuletzt bearbeitet 14.04.2026 15:47:10
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

OpenAirInterface v2.2.0 accepts Security Mode Complete without any integrity protection. Configuration has supported integrity NIA1 and NIA2. But if an UE sends initial registration request with only security capability IA0, OpenAirInterface accepts and proceeds. This downgrade security context can lead to the possibility of replay attack.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Openairinterface ≫ Oai-cn5g-amf Version2.2.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.25%	0.162

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-294 Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

https://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-amf/-/issues/78

Third Party Advisory

Exploit

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2026-30080

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-30080

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-30080

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-30080