Linuxfoundation

Magma

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-24423

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:12
  • Last modified 18.03.2025 19:15:42

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_esm_message_container function at /nas/ies/EsmMessageContainer.cpp. This vulnerability allow...

7.5

CVE-2024-24422

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:12
  • Last modified 19.03.2025 14:15:36

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a stack overflow in the decode_protocol_configuration_options function at /3gpp/3gpp_24.008_sm_ies.c. This vulnerability all...

9.8

CVE-2024-24421

Exploit
  • EPSS 0.71%
  • Published 21.01.2025 23:15:12
  • Last modified 03.07.2025 00:47:52

A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted NAS packet.

7.5

CVE-2024-24420

Exploit
  • EPSS 0.08%
  • Published 21.01.2025 23:15:12
  • Last modified 03.07.2025 00:49:21

A reachable assertion in the decode_linked_ti_ie function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet.

7.5

CVE-2024-24419

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:11
  • Last modified 18.03.2025 21:15:23

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_traffic_flow_template_packet_filter function at /3gpp/3gpp_24.008_sm_ies.c. This vulnerabili...

7.5

CVE-2024-24418

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:11
  • Last modified 24.03.2025 18:15:18

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_pdn_address function at /nas/ies/PdnAddress.cpp. This vulnerability allows attackers to caus...

7.5

CVE-2024-24417

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:11
  • Last modified 14.03.2025 17:15:42

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_protocol_configuration_options function at /3gpp/3gpp_24.008_sm_ies.c. This vulnerability al...

7.5

CVE-2024-24416

Exploit
  • EPSS 0.19%
  • Published 21.01.2025 23:15:11
  • Last modified 15.03.2025 15:15:37

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_access_point_name_ie function at /3gpp/3gpp_24.008_sm_ies.c. This vulnerability allows attac...

6.5

CVE-2023-37038

Exploit
  • EPSS 0.06%
  • Published 21.01.2025 23:15:11
  • Last modified 13.03.2025 20:15:15

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `Uplink NAS Transport` pac...

6.5

CVE-2023-37037

Exploit
  • EPSS 0.06%
  • Published 21.01.2025 23:15:11
  • Last modified 18.03.2025 14:15:36

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP `S1Setup Request` packet m...