Описание
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of gmm_state_exception() function upon receipt of the Nausf_UEAuthentication_Authenticate response.
Ссылки
- Patch
- ExploitIssue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:open5gs:open5gs:2.7.2:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00299
Низкий
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-400
Связанные уязвимости
CVSS3: 7.5
debian
около 1 года назад
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registrat ...
CVSS3: 7.5
github
около 1 года назад
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of gmm_state_exception() function upon receipt of the Nausf_UEAuthentication_Authenticate response.
EPSS
Процентиль: 53%
0.00299
Низкий
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-400