Soumettre #621282: Open5GS <=2.7.5 Reachable Assertioninformation

TitreOpen5GS <=2.7.5 Reachable Assertion
DescriptionIn Open5GS versions ≤2.7.5, improper state validation during SM context release while in security mode triggers a fatal assertion, causing AMF service crashes. This allows malicious UEs to disrupt core network availability via malformed NAS messages.
La source⚠️ https://github.com/open5gs/open5gs/issues/4012 / https://github.com/open5gs/open5gs/commit/66bc558e417e70ae216ec155e4e81c14ae0ecf30
Utilisateur
 SQ0409 (UID 85579)
Soumission23/07/2025 08:15 (il y a 9 mois)
Modérer07/08/2025 12:50 (15 days later)
StatutAccepté
Entrée VulDB319128 [Open5GS jusqu’à 2.7.5 AMF Service src/amf/nsmf-handler.c amf_nsmf_pdusession_handle_release_sm_context déni de service]
Points17

PrécédentAperçuSuivant

Want to know what is going to be exploited?

We predict KEV entries!