Open5gs: >> Open5gs Security Vulnerabilities
A reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-01-21
A reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NGAP packet.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-01-21
A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet with a zero-length EMM message length.
CVSS Score
7.5
EPSS Score
0.004
Published
2024-11-15
Open5GS v2.6.4 is vulnerable to Buffer Overflow. via /lib/pfcp/context.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2024-07-16
open5gs v2.6.4 is vulnerable to Buffer Overflow. via /lib/core/abts.c.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-07-16
An issue in Open5GS v.2.7.0 allows an attacker to cause a denial of service via the 64 unsuccessful UE/gnb registration
CVSS Score
5.3
EPSS Score
0.002
Published
2024-05-08
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmm_state_authentication in amf/gmm-sm.c for != OGS_ERROR.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-05-05
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in lib/nas/common/security.c for pkbuf->len.
CVSS Score
5.3
EPSS Score
0.001
Published
2024-05-05
An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of Nudm_UECM_Registration response.
CVSS Score
5.9
EPSS Score
0.003
Published
2024-01-02
An issue was discovered in open5gs v2.6.6. SIGPIPE can be used to crash AMF.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-01-02