Lucene search
HistoryNov 01, 2022 - 2:15 p.m.
CVE-2022-43223
open5gs v2.4.11
memory leak
vulnerability
dos
crafted ue attachment
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
37.0%
open5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted UE attachment.
Affected configurations
Node
open5gsopen5gsMatch2.4.11
Related
prion
prion
Memory corruption
2022-11-01 14:15:00
cvelist
cvelist
CVE-2022-43223
2022-11-01 00:00:00
cve
cve
CVE-2022-43223
2022-11-01 14:15:15
cnvd
cnvd
Open5GS ngap-handler.c Denial of Service Vulnerability
2022-11-03 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
37.0%
Related for NVD:CVE-2022-43223