Описание
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF (Virtual Network Function), and triggering the ogs_sbi_message_free function, which could cause a service outage.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.4.10 (включая)
cpe:2.3:a:open5gs:open5gs:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
7.5 High
CVSS3
Дефекты
CWE-763
CWE-763
Связанные уязвимости
CVSS3: 7.5
debian
почти 2 года назад
Invalid pointer release vulnerability. Exploitation of this vulnerabil ...
CVSS3: 7.5
github
почти 2 года назад
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF (Virtual Network Function), and triggering the ogs_sbi_message_free function, which could cause a service outage.
EPSS
Процентиль: 21%
0.00068
Низкий
7.5 High
CVSS3
Дефекты
CWE-763
CWE-763