Lucene search
+L

93 matches found

Packet Storm News
Packet Storm News
added 2025/09/29 12:0 a.m.6 views

Finding Phones Fast: Low-Latency and Scalable Monitoring of Cellular Communications in Sensitive Areas

The widespread availability of cellular devices introduces new threat vectors that allow users or attackers to bypass security policies and physical barriers and bring unauthorized devices into sensitive areas. These threats can arise from user non-compliance or deliberate actions aimed at data...

6.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/09/10 12:34 a.m.12 views

CVE-2025-52288

Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...

7.5CVSS6.9AI score0.00448EPSS
Exploits1References1
Snyk
Snyk
added 2025/09/08 8:45 p.m.4 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion via the ngapbuilddownlinknastransport function in the Access and Mobility Management Function AMF component. An attacker can cause the process to terminate unexpectedly by repeatedly sending UE connect and disconnect...

8.7CVSS6.9AI score0.00448EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/09/08 12:0 a.m.12 views

CVE-2025-52288

Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...

0.00448EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/09/08 12:0 a.m.4 views

PT-2025-36506

Name of the Vulnerable Software and Affected Versions: Open5GS versions through 2.7.5 Description: An assertion failure in the ngap build downlink nas transport function within the src/amf/ngap-build.c file, part of the Access and Mobility Management Function AMF component, can lead to a denial o...

7.5CVSS6.4AI score0.00448EPSS
Exploits1References8
OSV
OSV
added 2025/09/08 12:0 a.m.6 views

CVE-2025-52288

Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...

7.5CVSS6.9AI score0.00448EPSS
Exploits1References7
Packet Storm News
Packet Storm News
added 2025/08/18 12:0 a.m.6 views

Sni5Gect: a Practical Approach to Inject aNRchy into 5G NR

In this paper, the authors propose and design SNI5GECT – a framework that sniffs messages from pre-authentication 5G communication in real-time and injects targeted attack payload in downlink communication towards the UE...

7AI score
Exploits0
CNVD
CNVD
added 2025/08/15 12:0 a.m.2 views

Open5GS has an unspecified vulnerability (CNVD-2025-18568)

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a security vulnerability that can be exploited by an attacker to cause reachable assertions via the function ngapbuilddownlinknastransport in the...

7.5CVSS6.9AI score0.00788EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/12 10:31 a.m.10 views

CVE-2025-8804

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

7.5CVSS5.6AI score0.00788EPSS
Exploits1References1
NVD
NVD
added 2025/08/10 10:15 a.m.6 views

CVE-2025-8804

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

7.5CVSS0.00788EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2025/08/10 10:2 a.m.3 views

CVE-2025-8804 Open5GS AMF ngap_build_downlink_nas_transport assertion

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS5.6AI score0.00788EPSS
Exploits1References10
Cvelist
Cvelist
added 2025/08/10 10:2 a.m.10 views

CVE-2025-8804 Open5GS AMF ngap_build_downlink_nas_transport assertion

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS0.00788EPSS
Exploits1References10
CVE
CVE
added 2025/08/10 10:2 a.m.25 views

CVE-2025-8804

Open5GS up to version 2.7.5 is affected. The vulnerability lies in the ngap_build_downlink_nas_transport function in the AMF component, which can lead to a reachable assertion. The issue can be exploited remotely, and public disclosure of exploits is noted. The approved fix is to upgrade to versi...

7.5CVSS5.3AI score0.00788EPSS
Exploits1References10Affected Software1
OSV
OSV
added 2025/08/10 10:2 a.m.7 views

CVE-2025-8804 Open5GS AMF ngap_build_downlink_nas_transport assertion

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ngapbuilddownlinknastransport of the component AMF. The manipulation leads to reachable assertion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS5.3AI score0.00788EPSS
Exploits1References12
CNNVD
CNNVD
added 2025/08/10 12:0 a.m.5 views

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a security vulnerability that can be exploited by an attacker to cause reachable assertions via the function ngapbuilddownlinknastransport in the...

7.5CVSS6.8AI score0.00788EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2025/08/10 12:0 a.m.13 views

PT-2025-32478 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5 Description: A vulnerability has been identified in Open5GS, classified as problematic. The vulnerability affects the ngap build downlink nas transport function within the AMF component. Manipulation of this...

7.5CVSS7.2AI score0.00788EPSS
Exploits1References17
RedhatCVE
RedhatCVE
added 2025/07/12 10:14 p.m.5 views

CVE-2025-24798

Meshtastic is an open source mesh networking solution. From 1.2.1 until 2.6.2, a packet sent to the routing module that contains wantresponse==true causes a crash. This can lead to a degradation of service for nodes within range of a malicious sender, or via MQTT if downlink is enabled. This...

6.5CVSS6.4AI score0.00375EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:1 a.m.6 views

CVE-2019-2271

Buffer over read can happen while parsing downlink session management OTA messages if network sends un-intended values in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...

10CVSS7.2AI score0.01093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:52 p.m.14 views

CVE-2022-40504

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network...

7.5CVSS6.8AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2024/08/27 8:36 p.m.8 views

CVE-2024-45038 Device crash via malformed MQTT packet when downlink is enabled in Meshtastic device firmware

Meshtastic device firmware is a firmware for meshtastic devices to run an open source, off-grid, decentralized, mesh network built to run on affordable, low-power devices. Meshtastic device firmware is subject to a denial of serivce vulnerability in MQTT handling, fixed in version 2.4.1 of the...

7.5CVSS7AI score0.00596EPSS
Exploits0References3
Rows per page
Query Builder