CVE-2026-30079

216.73.217.22

· Published 07/04/2026 15:17 · Modified 08/04/2026 21:27

Labels: CVE-2026-30079 2026-04-07 CVE-2026-30079 [email protected]

Essential information

Published: 07/04/2026 15:17
Modified: 08/04/2026 21:27
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

In OpenAirInterface V2.2.0 AMF, Out of sequence messages causes incorrect state transition during UE registration procedure. This allows authentication to be bypassed completely. If a SecurityModeComplete message is sent after InitialUERegistration, a registration reject is received followed by a registration accept! This leads the UE to be registered without proper authentication.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
openairinterface / amf	`cpe:2.3:a:openairinterface:amf:2.2.0:::::::*`

CVE-2026-30079

Essential information

Description

NVD status

Affected products (CPE)

References