1535 matches found
EUVD-2022-46267
Malicious code in bioql PyPI...
EUVD-2022-46266
Malicious code in bioql PyPI...
EUVD-2025-24081
Malicious code in bioql PyPI...
EUVD-2023-40942
Malicious code in bioql PyPI...
EUVD-2022-42690
Malicious code in bioql PyPI...
EUVD-2022-41609
Malicious code in bioql PyPI...
EUVD-2025-19611
Malicious code in bioql PyPI...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the parsemultipart function when processing a multipart/related HTTP POST request with an empty HTTP body. An attacker can cause the application to crash by sending a specially crafted HTTP request to the SB...
CVE-2025-55904
Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL pointer dereference when a multipart/related HTTP POST request with an empty HTTP body is sent to the SBI of either AMF, AUSF, BSF, NRF, NSSF, PCF, SMF, UDM, or UDR, resulting in a denial of service...
CVE-2025-55904
Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL pointer dereference when a multipart/related HTTP POST request with an empty HTTP body is sent to the SBI of either AMF, AUSF, BSF, NRF, NSSF, PCF, SMF, UDM, or UDR, resulting in a denial of service...
CVE-2025-55904
Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL pointer dereference when a multipart/related HTTP POST request with an empty HTTP body is sent to the SBI of either AMF, AUSF, BSF, NRF, NSSF, PCF, SMF, UDM, or UDR, resulting in a denial of service...
CVE-2025-55904
Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL pointer dereference when a multipart/related HTTP POST request with an empty HTTP body is sent to the SBI of either AMF, AUSF, BSF, NRF, NSSF, PCF, SMF, UDM, or UDR, resulting in a denial of service...
PT-2025-38150
Name of the Vulnerable Software and Affected Versions: Open5GS versions prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615 Description: Open5GS is susceptible to a NULL pointer dereference when processing a multipart/related HTTP POST request with an empty HTTP body sent to the SBI of AMF,...
Open5GS 安全漏洞
Open5GS is an Open5GS open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. A security vulnerability exists in Open5GS version v2.7.5 that stems from the parsemultipart function not handling null HTTP bodies, which could lead to null pointer dereference and...
CVE-2025-55904
Open5GS v2.7.5 is affected by a NULL pointer dereference in parse_multipart (lib/sbi/message.c) when receiving a multipart/related HTTP POST with an empty body on the SBI interface (AMF/AUSF/BSF/NRF/NSSF/PCF/SMF/UDM/UDR), leading to denial of service. Affected versions: prior to commit 67ba7f92bb...
CVE-2025-52322
An issue in Open5GS v2.7.2 and before allows a remote attacker to cause a denial of service via a crafted Create Session Request message to the SMF PGW-C, using the IP address of a legitimate UE in the PDN Address Allocation PAA field...
CVE-2025-52288
Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...
CVE-2025-52322
An issue in Open5GS v2.7.2 and before allows a remote attacker to cause a denial of service via a crafted Create Session Request message to the SMF PGW-C, using the IP address of a legitimate UE in the PDN Address Allocation PAA field...
CVE-2025-52322
An issue in Open5GS v2.7.2 and before allows a remote attacker to cause a denial of service via a crafted Create Session Request message to the SMF PGW-C, using the IP address of a legitimate UE in the PDN Address Allocation PAA field...
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the Create Session Request process when a crafted message is sent to the SMF PGW-C containing the IP address of a legitimate UE in the PAA field. An attacker can hijack session...