108 matches found
CVE-2024-24444
OpenAirInterface CN5G AMF (oai-cn5g-amf) up to v2.0.0 is affected by CVE-2024-24444 due to improper file descriptor handling for closed connections. An attacker can cause a Denial of Service by repeatedly establishing SCTP connections with the N2 interface. Impact: high availability risk; attack ...
CVE-2024-24445
OpenAirInterface CN5G AMF (oai-cn5g-amf)
CVE-2024-24444
Improper file descriptor handling for closed connections in OpenAirInterface CN5G AMF oai-cn5g-amf up to v2.0.0 allows attackers to cause a Denial of Service DoS by repeatedly establishing SCTP connections with the N2 interface...
PT-2025-2385 · Unknown · Openairinterface Cn5G Amf
Name of the Vulnerable Software and Affected Versions: OpenAirInterface CN5G AMF oai-cn5g-amf versions up to v2.0.0 Description: A stack overflow in the sctp server::sctp receiver thread component allows attackers to cause a Denial of Service DoS by repeatedly establishing SCTP connections with t...
SUSE CVE-2024-24426
Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...
CVE-2024-24426
Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...
CVE-2024-24426
Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...
CVE-2024-24446
An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialContextSetupResponse message sent to the AMF...
CVE-2024-24449
An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialUEMessage message sent to the AMF...
CVE-2024-24450
Stack-based memcpy buffer overflow in the ngaphandlepdusessionresourcesetupresponse routine in OpenAirInterface CN5G AMF = 2.0.0 allows a remote attacker with access to the N2 interface to carry out denial of service against the AMF and potentially execute code by sending a PDU Session Resource...
CVE-2024-24449
An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialUEMessage message sent to the AMF...
CVE-2024-24450
Stack-based memcpy buffer overflow in the ngaphandlepdusessionresourcesetupresponse routine in OpenAirInterface CN5G AMF = 2.0.0 allows a remote attacker with access to the N2 interface to carry out denial of service against the AMF and potentially execute code by sending a PDU Session Resource...
CVE-2024-24446
An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialContextSetupResponse message sent to the AMF...
CVE-2024-24426
CVE-2024-24426 affects OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0. The root cause is reachable assertions in NGAP_FIND_PROTOCOLIE_BY_ID, enabling DoS via a crafted NGAP packet. Mitigations documented in connected sources include (for Magma v1.8.0) disabling the NGAP FIND PROTOCOL...
CVE-2024-24426
Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...
CVE-2024-24446
An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialContextSetupResponse message sent to the AMF...
OpenAirInterface CN5G AMF 安全漏洞
OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions, which originates from an uninitialized pointer dereference and allows an attacker to trigger a denial of service DoS by sending a...
OpenAirInterface CN5G AMF 安全漏洞
OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions, which stems from an uninitialized pointer dereference that allows an attacker to trigger a denial of service DoS via a crafted messag...
OpenAirInterface CN5G AMF 安全漏洞
OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions, which stems from the presence of a stack-based buffer overflow that allows a remote attacker to execute code by sending a response wi...
CVE-2024-24449
CVE-2024-24449 arises from an uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF (versions up to 2.0.0). This flaw can enable a Denial of Service (DoS) via a crafted InitialUEMessage sent to the AMF. The issue is observable from a network contact point ...