Open5gs

Open5gs

116 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-37012

Exploit
  • EPSS 0.09%
  • Veröffentlicht 22.01.2025 15:15:10
  • Zuletzt bearbeitet 22.04.2025 17:13:53

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `Initial UE Message` message missing a required `PLMN Identity` field to repeatedly crash ...

7.3

CVE-2023-37013

Exploit
  • EPSS 0.2%
  • Veröffentlicht 22.01.2025 15:15:10
  • Zuletzt bearbeitet 22.04.2025 17:15:29

Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a sufficiently large ASN.1 packet over the S1AP interface. An attacker may repeatedly send such an oversized packet to cause the `ogs_sctp_recvmsg` routine to reac...

7.5

CVE-2023-37014

Exploit
  • EPSS 0.31%
  • Veröffentlicht 22.01.2025 15:15:10
  • Zuletzt bearbeitet 22.04.2025 17:15:26

Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `UE Context Release Request` message missing a required `MME_UE_S1AP_ID` field to repeated...

5.3

CVE-2023-37002

Exploit
  • EPSS 0.09%
  • Veröffentlicht 22.01.2025 15:15:09
  • Zuletzt bearbeitet 22.04.2025 17:14:26

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `E-RAB Modification Indication` message missing a required `MME_UE_S1AP_ID` field to repea...

5.3

CVE-2023-37003

Exploit
  • EPSS 0.09%
  • Veröffentlicht 22.01.2025 15:15:09
  • Zuletzt bearbeitet 22.04.2025 17:14:22

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `E-RAB Setup Response` message missing a required `MME_UE_S1AP_ID` field to repeatedly cra...

5.3

CVE-2023-37004

Exploit
  • EPSS 0.09%
  • Veröffentlicht 22.01.2025 15:15:09
  • Zuletzt bearbeitet 22.04.2025 17:14:16

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `Initial Context Setup Response` message missing a required `MME_UE_S1AP_ID` field to repe...

7.5

CVE-2024-24427

  • EPSS 0.2%
  • Veröffentlicht 21.01.2025 23:15:12
  • Zuletzt bearbeitet 24.01.2025 18:47:28

A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet.

7.5

CVE-2024-24428

Exploit
  • EPSS 0.2%
  • Veröffentlicht 21.01.2025 23:15:12
  • Zuletzt bearbeitet 24.01.2025 18:44:26

A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NGAP packet.

7.5

CVE-2024-24431

Exploit
  • EPSS 0.27%
  • Veröffentlicht 15.11.2024 19:15:06
  • Zuletzt bearbeitet 22.04.2025 17:26:58

A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet with a zero-length EMM message length.

7.5

CVE-2024-51179

Exploit
  • EPSS 13.54%
  • Veröffentlicht 12.11.2024 22:15:15
  • Zuletzt bearbeitet 29.09.2025 17:23:17

An issue in Open 5GS v.2.7.1 allows a remote attacker to cause a denial of service via the Network Function Virtualizations (NFVs) such as the User Plane Function (UPF) and the Session Management Function (SMF), The Packet Data Unit (PDU) session est...