Lucene search
K

104 matches found

CNNVD
CNNVD
added 2026/05/10 12:0 a.m.15 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the sm-policies Endpoint component, specifically t...

7.5CVSS6.1AI score0.00477EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the SMF component file/src/smf/n4-build.c called...

6.5CVSS5.8AI score0.00372EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the updateauthorizedpccruleandqos function in the SMF component...

6.5CVSS5.8AI score0.00372EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the ogssbidiscoveryoptionaddsnssais function in the NSSF...

6.5CVSS5.8AI score0.00372EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from issues with the amf-3gpp-access endpoint in the file...

5.3CVSS5.8AI score0.00271EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.12 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS prior to 2.7.5 contained security vulnerabilities. These vulnerabilities stemmed from assertion failures in the PCO parser within the SMF component,...

7.5CVSS5.9AI score0.00332EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/04/22 12:0 a.m.7 views

Threat Detection and Resilience Techniques in PRS-Assisted OTDOA 5G Positioning Systems

Precise positioning is a key enabler for emerging 5G applications, from autonomous transport to industrial automation. Yet the open physical layer PL leaves standard positioning reference signals PRSs vulnerable to manipulation. This work addresses the security of downlink observed time differenc...

5.2AI score
Exploits0
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 1.4.3 contained security vulnerabilities. These vulnerabilities stemmed from the HTTPUEContextTransfer handler’s lack of a default scenario in the Content-Type switch statement. When a...

6.9CVSS5.8AI score0.00282EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

free5GC 代码问题漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC 1.4.2 and earlier contained code vulnerabilities. These vulnerabilities stemmed from a flaw in the UDR service, where open-ended failure request handling was flawed. As a result, the POST handler...

6.9CVSS5.9AI score0.09955EPSS
Exploits0References1
NVD
NVD
added 2026/04/16 10:16 p.m.6 views

CVE-2026-40247

free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for reading Traffic Influence Subscriptions checks whether the influenceId path segment equals subs-to-notify, but does not return after sending the HTTP 404 response when...

8.7CVSS0.00493EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.12 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the PUT request handler in the UDR service, which failed to properly return values after request parsing or...

6.9CVSS5.9AI score0.00321EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/04/14 8:0 p.m.9 views

free5gc UDR improper path validation allows unauthenticated creation and modification of Traffic Influence Subscriptions

Summary An improper path validation vulnerability in the UDR service allows any unauthenticated attacker with access to the 5G Service Based Interface SBI to create or overwrite Traffic Influence Subscriptions by supplying an arbitrary value in place of the expected subs-to-notify path segment...

8.7CVSS5.9AI score0.00427EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/04/07 12:18 p.m.18 views

CVE-2026-23818

The CVE-2026-23818 case concerns HPE Aruba Networking Private 5G Core On-Prem GUI open redirect in the login flow. A crafted URL can redirect an authenticated user to an attacker‑controlled server hosting a spoofed login page, prompting credential capture before redirecting back to the legitimate...

9.6CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/04/07 12:18 p.m.21 views

CVE-2026-23818 Open Redirect Vulnerability in HPE Aruba Networking Private 5G Core On-Prem

A vulnerability has been identified in the graphical user interface GUI of HPE Aruba Networking Private 5G Core On-Prem that could allow an attacker to abuse an open redirect vulnerability in the login flow using a crafted URL. Successful exploitation may redirect an authenticated user to an...

8.8CVSS0.00321EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/27 8:52 p.m.4 views

CVE-2026-33903

Ella Core is a 5G core designed for private networks. Versions prior to 1.7.0 panic when processing a specially crafted NGAP LocationReport message. An attacker able to send crafted NGAP messages to Ella Core can crash the process, causing service disruption for all connected subscribers. Version...

6.5CVSS5.9AI score0.00207EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 3:0 p.m.5 views

CVE-2026-33282

Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing a malformed NGAP LocationReport message with ue-presence-in-area-of-interest event type and omitting the optional UEPresenceInAreaOfInterestList IE. An attacker able to send crafted NGAP messages t...

7.5CVSS5.8AI score0.00396EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/20 8:9 a.m.6 views

CVE-2026-33192

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. In versions prior to 1.4.2, the UDM incorrectly converts a downstream 400 Bad Request from UDR into a 500 Internal Server Error when handling PATCH requests with an empty supi path parameter...

8.7CVSS5.7AI score0.00321EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.12 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 1.4.2 contained security vulnerabilities. These vulnerabilities stemmed from UDM’s improper handling of PATCH requests with empty supi path parameters. UDM incorrectly converted downstrea...

8.7CVSS6.4AI score0.00321EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/12 9:33 p.m.3 views

CVE-2026-32319

Ella Core is a 5G core designed for private networks. Prior to 1.5.1, Ella Core panics when processing a malformed integrity protected NGAP/NAS message with a length under 7 bytes. An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all...

7.5CVSS5.8AI score0.00306EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/09 8:2 a.m.6 views

CVE-2026-3701

A security vulnerability has been detected in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function EditBasicSSID5G of the file /goform/aspForm. Such manipulation of the argument param leads to buffer overflow. The attack can be executed remotely. The exploit has been disclos...

9CVSS6.2AI score0.00687EPSS
Exploits1References1
Rows per page
Query Builder