Open5GS is an open source implementation of 5G Core and Epc in C, the core network of the Lte/Nr network. open5GS 2.4.10 and earlier, and 2.4.10 and later versions are vulnerable to a denial of service vulnerability that stems from a failure to properly handle incoming error messages in the component AMF’s library lib/sbi/client.c, which an attacker could exploit the vulnerability to cause a denial of service of the application.
CPE | Name | Operator | Version |
---|---|---|---|
open5gs open5gs >=2.4.0, | le | 2.4.10 |