إرسال #605312: Open5GS <=2.7.5 Reachable Assertionالمعلومات

عنوان	Open5GS <=2.7.5 Reachable Assertion
الوصف	In Open5GS AMF versions ≤ v2.7.5, a critical vulnerability allows attackers to crash the AMF service by sending a SIGTERM signal during its initialization phase (specifically after subscription requests to the NRF are sent but before responses are processed). This disrupts the internal state machine, triggering a fatal assertion failure that forcibly terminates the AMF process. Exploiting this flaw causes persistent denial-of-service (DoS) attacks, paralyzing 5G core network services and preventing gNodeBs and UEs from establishing connections.
المصدر	⚠️ https://github.com/open5gs/open5gs/issues/3938 / https://github.com/open5gs/open5gs/commit/53e9e059ed96b940f7ddcd9a2b68cb512524d5db
المستخدم	SQ0409 (UID 85579)
ارسال	27/06/2025 03:18 PM (10 أشهر منذ)
الاعتدال	01/07/2025 07:51 AM (4 days later)
الحالة	تمت الموافقة
إدخال VulDB	314489 [Open5GS حتى 2.7.5 AMF Service src/amf/amf-sm.c amf_state_operational الحرمان من الخدمة]
النقاط	20

Do you know our Splunk app?

Download it now for free!