Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-37017

Опубликовано: 22 янв. 2025
Источник: debian
EPSS Низкий

Описание

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `S1Setup Request` message missing a required `Global eNB ID` field to repeatedly crash the MME, resulting in denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
open5gsitppackage

EPSS

Процентиль: 28%
0.00099
Низкий

Связанные уязвимости

nvd логотип

CVE-2023-37017

CVSS3: 8.6
nvd
около 1 года назад

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `S1Setup Request` message missing a required `Global eNB ID` field to repeatedly crash the MME, resulting in denial of service.

github логотип

GHSA-qcjc-qmxq-wf6x

CVSS3: 8.6
github
около 1 года назад

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `S1Setup Request` message missing a required `Global eNB ID` field to repeatedly crash the MME, resulting in denial of service.

EPSS

Процентиль: 28%
0.00099
Низкий