| Titel | Open5GS <=2.7.5 Reachable Assertion |
|---|
| Beschreibung | In Open5GS versions ≤2.7.5, improper state validation during SM context release while in security mode triggers a fatal assertion, causing AMF service crashes. This allows malicious UEs to disrupt core network availability via malformed NAS messages. |
|---|
| Quelle | ⚠️ https://github.com/open5gs/open5gs/issues/4012 / https://github.com/open5gs/open5gs/commit/66bc558e417e70ae216ec155e4e81c14ae0ecf30 |
|---|
| Benutzer | SQ0409 (UID 85579) |
|---|
| Einreichung | 23.07.2025 08:15 (vor 9 Monaten) |
|---|
| Moderieren | 07.08.2025 12:50 (15 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 319128 [Open5GS bis 2.7.5 AMF Service src/amf/nsmf-handler.c amf_nsmf_pdusession_handle_release_sm_context Denial of Service] |
|---|
| Punkte | 17 |
|---|