5 matches found
CVE-2023-37020
creationtimestamp| type| source ---|---|--- 2025-01-22 15:17:22+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdnyr5uxb2j...
CVE-2023-37020
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a UE Context Release Complete message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37020
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a UE Context Release Complete message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...
CVE-2023-37020
CVE-2023-37020 affects Open5GS MME up to and including version 2.6.4. A malformed ASN.1 packet sent over the S1AP interface can trigger an assertion when a UE Context Release Complete message is missing the required MME_UE_S1AP_ID, causing the MME to crash and resulting in denial of service. Conn...
CVE-2023-37020
Open5GS MME versions = 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a UE Context Release Complete message missing a required MMEUES1APID field to repeatedly crash the MME, resulting in denial of service...