| Titel | Open5GS <=2.7.3 Reachable Assertion |
|---|
| Beschreibung | In Open5GS ≤2.7.3, a crafted sequence involving an incomplete handover followed by repeated registration attempts with a duplicate IMSI can cause the AMF to crash in common_register_state() due to a stale ran_ue_id reference, leading to a denial of service. |
|---|
| Quelle | ⚠️ https://github.com/open5gs/open5gs/issues/3874 / https://github.com/open5gs/open5gs/commit/62cb99755243c9c38e4c060c5d8d0e158fe8cdd5 |
|---|
| Benutzer | SQ0409 (UID 85579) |
|---|
| Einreichung | 03.06.2025 11:24 (vor 1 Jahr) |
|---|
| Moderieren | 09.06.2025 17:34 (6 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 311713 [Open5GS bis 2.7.3 AMF/MME src/mme/emm-sm.c common_register_state ran_ue_id Denial of Service] |
|---|
| Punkte | 18 |
|---|