CVE-2026-33907

Ella Core is a 5G core designed for private networks. Versions prior to 1.7.0 panic when processing Authentication Response and Authentication Failure NAS message missing IEs. An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all...

Ella Core 代码问题漏洞

Ella Core is an open-source solution developed by Ella Networks for use in private networks as a 5G core network solution. Versions of Ella Core prior to 1.6.0 contained code vulnerabilities. These vulnerabilities resulted from kernel crashes during the processing of UL NAS transmission messages...

CVE-2025-59439

An issue was discovered in Samsung Mobile Processor, Wearable Processor and Modem Exynos 980, 990, 850, 1080, 9110, W920, W930, W1000 and Modem 5123. Incorrect handling of NAS Registration messages leads to a Denial of Service because of Improper Handling of Exceptional Conditions...

CVE-2022-38871

In Free5gc v3.0.5, the AMF breaks due to malformed NAS messages...

CVE-2025-65805

OpenAirInterface CN5G AMF=v2.1.9 has a buffer overflow vulnerability in processing NAS messages. Unauthorized remote attackers can launch a denial-of-service attack and potentially execute malicious code by accessing port N1 and sending an imsi string longer than 1000 to AMF...

EUVD-2015-8891

Malware in sbrugna...

EUVD-2022-25470

Malicious code in bioql PyPI...

EUVD-2022-7382

Malicious code in bioql PyPI...

CVE-2024-34476

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogsnasencrypt in lib/nas/common/security.c for pkbuf-len...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...

CVE-2024-29153

A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem...

CVE-2024-29153

The CVE-2024-29153 entry affects Samsung Mobile Processor, Wearable Processor, and Modems (Exynos 9820/9825/980/990/850/1080/2100/2200/1280/1380/1330/9110/W920/W930, Modem 5123/5300). Root cause: incorrect authorization of LTE NAS messages, enabling downgrades to lower network generations and rep...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...

CVE-2024-34476

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogsnasencrypt in lib/nas/common/security.c for pkbuf-len...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...

CVE-2024-34476

Open5GS before 2.7.1 is affected by CVE-2024-34476 due to a reachable assertion in ogs_nas_encrypt (lib/nas/common/security.c) when processing NAS messages from a UE, related to pkbuf->len. This can cause an AMF crash. Evidence across multiple sources confirms the affected software and the und...

CVE-2024-34476

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogsnasencrypt in lib/nas/common/security.c for pkbuf-len...

CVE-2024-34475

Open5GS prior to 2.7.1 is affected by a reachable assertion that can cause an AMF crash via NAS messages from a UE. The root cause is in gmm_state_authentication within amf/gmm-sm.c for != OGS_ERROR. Affected software: Open5GS before 2.7.1. Impact is an AMF crash (service disruption). Remediation...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...