65 matches found
CVE-2023-37011
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a Handover Required message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37003
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an E-RAB Setup Response message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37020
CVE-2023-37020 affects Open5GS MME up to and including version 2.6.4. A malformed ASN.1 packet sent over the S1AP interface can trigger an assertion when a UE Context Release Complete message is missing the required MME_UE_S1AP_ID, causing the MME to crash and resulting in denial of service. Conn...
CVE-2023-37005
Open5GS MME <= 2.6.4 is affected by an assertion that can be remotely triggered via a malformed ASN.1 packet on the S1AP interface. An attacker can send an Initial Context Setup Failure message missing the required MME_UE_S1AP_ID field, which may repeatedly crash the MME and cause denial of se...
CVE-2023-37019
Open5GS MME versions = 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an S1Setup Request message missing a required Supported TAs field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37016
Open5GS MME in versions
CVE-2023-37010
Open5GS MME versions ≤ 2.6.4 are affected by an assertion that can be remotely triggered via a malformed ASN.1 packet on the S1AP interface. An attacker can send an ENB Status Transfer message missing the MME_UE_S1AP_ID, causing the MME to crash and leading to denial of service. The most reliable...
CVE-2023-37005
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an Initial Context Setup Failure message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37016
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a UE Context Modification Response message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37019
Open5GS MME versions = 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an S1Setup Request message missing a required Supported TAs field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37021
Open5GS MME version = 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a UE Context Modification Failure message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
PT-2025-1396 · Open5Gs · Open5Gs Mme
Name of the Vulnerable Software and Affected Versions: Open5GS MME versions prior to 2.6.4 Description: The issue allows an attacker to send a malformed ASN.1 packet over the S1AP interface, triggering an assertion that can cause a denial of service. Specifically, an attacker may send an "Initial...
CVE-2023-37015
Open5GS MME versions ≤ 2.6.4 are affected by an assertion that can be remotely triggered via a malformed ASN.1 packet on the S1AP interface. An attacker can send a Path Switch Request lacking the required MME_UE_S1AP_ID, causing the MME to crash and leading to denial of service. Affected software...
CVE-2023-37009
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a Handover Notification message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37014
Open5GS MME versions ≤ 2.6.4 are affected by an assertion that can be remotely triggered via a malformed ASN.1 packet on the S1AP interface. An attacker can send a UE Context Release Request missing the required MME_UE_S1AP_ID field, causing the MME to repeatedly crash and resulting in a denial o...
PT-2025-1409
Name of the Vulnerable Software and Affected Versions Open5GS MME versions = 2.6.4 Description The issue is related to an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an S1Setup Request message missing a required Global eNB ID...
CVE-2023-37017
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an S1Setup Request message missing a required Global eNB ID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37017
Affected software: Open5GS MME versions
CVE-2023-37017
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an S1Setup Request message missing a required Global eNB ID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37009
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a Handover Notification message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...