Описание
NSSF panic due to nil pointer dereference when expiry field is omitted in NSSAIAvailability POST
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of service via crafted POST request to the Nnssf_NSSAIAvailability API.
Пакеты
Наименование
github.com/free5gc/nssf
go
Затронутые версииВерсия исправления
< 1.4.0
1.4.0
Связанные уязвимости
CVSS3: 7.5
nvd
2 месяца назад
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of service via crafted POST request to the Nnssf_NSSAIAvailability API.