Описание
A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attack must be carried out locally. The exploit is publicly available and might be used. The name of the patch is 465273d13ba5d47b274c38c9d1b07f04859178a1. A patch should be applied to remediate this issue.
Ссылки
- Patch
- ExploitIssue TrackingVendor Advisory
- ExploitIssue TrackingVendor Advisory
- Issue TrackingExploitVendor Advisory
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitIssue TrackingVendor Advisory
Уязвимые конфигурации
EPSS
3.3 Low
CVSS3
5.5 Medium
CVSS3
1.7 Low
CVSS2
Дефекты
Связанные уязвимости
A vulnerability was identified in Open5GS up to 2.7.6. Affected is the ...
A vulnerability was identified in Open5GS up to 2.7.6. Affected is the function sgwc_s11_handle_create_session_request of the file src/sgwc/s11-handler.c of the component GTPv2-C F-TEID Handler. Such manipulation leads to denial of service. The attack must be carried out locally. The exploit is publicly available and might be used. The name of the patch is 465273d13ba5d47b274c38c9d1b07f04859178a1. A patch should be applied to remediate this issue.
EPSS
3.3 Low
CVSS3
5.5 Medium
CVSS3
1.7 Low
CVSS2