3 matches found
CVE-2026-30075
OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NAS PDU with oversize response For example 100 byte. The response is decoded by AMF and passed to the AUSF component for verification. AUSF crashes o...
CVE-2026-30075
OpenAirInterface 2.2.0 is affected by a buffer overflow in UplinkNASTransport processing of an Authentication Response containing an oversized NAS PDU (example: 100 bytes). The AUSF may crash, potentially denying new registrations/verification and causing DoS. Remediation: update to a newer OpenA...
PT-2025-1415 · Open5Gs · Open5Gs
Name of the Vulnerable Software and Affected Versions: Open5GS MME versions prior to 2.6.4 Description: The issue is related to a reachable assertion in the Uplink NAS Transport packet handler. A packet missing its MME UE S1AP ID field causes Open5GS to crash. An attacker may repeatedly send such...