EUVD-2024-21843

Malicious code in bioql PyPI...

EUVD-2023-40958

Malicious code in bioql PyPI...

CVE-2024-24418

The Linux Foundation Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 was discovered to contain a buffer overflow in the decodepdnaddress function at /nas/ies/PdnAddress.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

CVE-2024-24421

A type confusion in the nasmessagedecode function of Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows attackers to execute arbitrary code or cause a Denial of Service DoS via a crafted NAS packet...

CVE-2024-24419

The Linux Foundation Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 was discovered to contain a buffer overflow in the decodetrafficflowtemplatepacketfilter function at /3gpp/3gpp24.008smies.c. This vulnerability allows attackers to cause a Denial of Service DoS via a...

CVE-2024-24420

A reachable assertion in the decodelinkedtiie function of Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

CVE-2023-37025

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Reset packet missing an expected ResetType field...

CVE-2023-37037

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP S1Setup Request packet missing an expected Supported TAs field...

CVE-2023-37031

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP eNB Configuration Transfer packet missing its required Target eNB ID field...

CVE-2023-37034

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected TAI field...

Magma null pointer dereference vulnerability (CNVD-2025-02448)

Magma is an open source software platform from Magma Open Source. Provides network operators with an open, flexible and scalable mobile core network solution. Magma has a null pointer dereference vulnerability that can be exploited by an attacker to crash MME via S1AP E-RAB Release Response, a...

Magma null pointer dereference vulnerability (CNVD-2025-02445)

Magma is an open source software platform from Magma Open Source. Provides network operators with an open, flexible and scalable mobile core network solution. Magma has a null pointer dereference vulnerability that can be exploited by an attacker to crash MME...

Magma null pointer dereference vulnerability (CNVD-2025-15066)

Magma is an open source software platform from Magma Open Source. Provides network operators with an open, flexible and scalable mobile core network solution. Magma has a null pointer dereference vulnerability that can be exploited by an attacker to crash MME...

CVE-2024-24420

A reachable assertion in the decodelinkedtiie function of Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

CVE-2024-24420

A reachable assertion in the decodelinkedtiie function of Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

CVE-2023-37037

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP S1Setup Request packet missing an expected Supported TAs field...

CVE-2024-24418

The Linux Foundation Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 was discovered to contain a buffer overflow in the decodepdnaddress function at /nas/ies/PdnAddress.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

CVE-2023-37030

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected eNBUES1APID field...

CVE-2023-37029

Magma versions = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 are susceptible to an assertion-based crash when an oversized NAS packet is received. An attacker may leverage this behavior to repeatedly crash the MME via either a compromised base station or via an...

CVE-2023-37033

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected EUTRANCGI field...