← Back to CVEs
CVE-2026-30079
N/ADescription
In OpenAirInterface V2.2.0 AMF, Out of sequence messages causes incorrect state transition during UE registration procedure. This allows authentication to be bypassed completely. If a SecurityModeComplete message is sent after InitialUERegistration, a registration reject is received followed by a registration accept! This leads the UE to be registered without proper authentication.
CVE Details
CVSS v3.1 ScoreN/A
Published4/7/2026
Last Modified4/7/2026
Sourcenvd
Honeypot Sightings0
References
https://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-amf/-/issues/77(cve@mitre.org)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.