This vulnerability in Open5GS (up to version 2.7.7) involves the SMF component's gsm_handle_pdu_session_modification_qos_flow_descriptions function. Improper handling of the n1SmMsg argument allows an attacker to remotely trigger a denial of service condition. The vulnerability has a CVSS 4.0 base score of 5.3, indicating medium severity, with network attack vector, low attack complexity, no privileges required, and no user interaction needed. Although a pull request containing a fix exists, it has not yet been merged or officially released.

Successful exploitation results in denial of service of the affected Open5GS SMF component, potentially disrupting 5G session management functions. The attack can be launched remotely and does not require user interaction, which increases the risk of disruption. However, there are no known exploits in the wild at this time.

No official patch or fix is currently available as the pull request to address this issue is awaiting acceptance. Users should monitor the Open5GS project repositories and advisories for the official patch release and apply it promptly once available. Until then, no specific mitigations are documented.