Submit #506038: Open5GS <=v2.7.2 Denial of Serviceinfo

TitleOpen5GS <=v2.7.2 Denial of Service
DescriptionState machine errors in handling PDU Session ID conflicts during a single UE's connection and disconnection may lead to an AMF crash. More details can be found in the Advisory/Vulnerability section at the provided link.
Source⚠️ https://github.com/guoweifk/BugReport/blob/main/Open5GS%20AMF%20Denial%20of%20Service%20via%20PDU%20Session%20ID%20Conflict
User
 EnginerStaticPower (UID 81890)
Submission02/24/2025 08:43 AM (1 Year ago)
Moderation03/04/2025 09:51 AM (8 days later)
StatusAccepted
VulDB entry298513 [Open5GS up to 2.7.2 AMF src/amf/nsmf-handler.c amf_nsmf_pdusession_handle_update_sm_context denial of service]
Points16

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!