Lucene search

GoogleOSV:CVE-2023-50019

HistoryJan 02, 2024 - 10:15 p.m.

CVE-2023-50019

2024-01-0222:15:09

Google

osv.dev

cve-2023-50019

software

nudm_uecm_registration

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

An issue was discovered in open5gs v2.6.6. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of Nudm_UECM_Registration response.

CPENameOperatorVersion
open5gseq2.1.3
open5gseq2.0.18
open5gseq2.6.3
open5gseq1.2.2
open5gseq2.6.1
open5gseq1.2.1
open5gseq0.5.0
open5gseq0.3.11
open5gseq0.3.10
open5gseq0.3.4

Name	Operator	Version
open5gs	eq	2.1.3
open5gs	eq	2.0.18
open5gs	eq	2.6.3
open5gs	eq	1.2.2
open5gs	eq	2.6.1
open5gs	eq	1.2.1
open5gs	eq	0.5.0
open5gs	eq	0.3.11
open5gs	eq	0.3.10
open5gs	eq	0.3.4

Rows per page:

1-10 of 631

References

github.com/open5gs/open5gs/commit/7278714133422cee46c32c7523f81ec2cecad9e2

github.com/open5gs/open5gs/issues/2733

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for OSV:CVE-2023-50019