Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial-of-service vulnerability that stems from the gmmstateexception function mishandling a specific response error, which can be exploited by an...

OpenAirInterface CN5G AMF 安全漏洞

OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions, which stems from the presence of a stack overflow that allows an attacker to cause a denial of service DoS by repeatedly establishing...

OpenAirInterface CN5G AMF 代码问题漏洞

OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions that stems from the presence of uninitialized pointer dereferences, which allows an attacker to trigger a denial of service DoS via a...

Multiple vulnerabilities in Rakuten Turbo 5G

Overview Rakuten Turbo 5G provided by Rakuten Mobile, Inc. contains multiple vulnerabilities listed below. Missing authentication for critical function CWE-306 - CVE-2024-47865 OS command injection CWE-78 - CVE-2024-48895 Exposure of sensitive system information to an unauthorized control sphere...

Open5GS has an unspecified vulnerability (CNVD-2025-18584)

Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS has a security vulnerability that can be exploited by an attacker to cause AMF to crash...

Open5GS 安全漏洞

Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that can be exploited by an attacker to cause AMF to crash...

The vulnerability of the 5G Azure Private 5G Core (AP5GC) network management tool, related to errors in processing input data length parameters, allows a attacker to trigger a service failure.

The vulnerability of the 5G Azure Private 5G Core AP5GC network management tool is related to errors in processing the length parameter of incoming message InitialUEMessage. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

PT-2023-7542 · 5G Modem · 5G Modem

Name of the Vulnerable Software and Affected Versions: 5G Modem affected versions not specified Description: The issue is related to improper error handling in the 5G Modem, which could lead to a system crash and remote denial of service when receiving malformed RRC messages. No additional...

PT-2023-7540 · 5G Modem · 5G Modem

Name of the Vulnerable Software and Affected Versions: 5G Modem affected versions not specified Description: The issue is related to improper error handling, which could lead to a system crash and remote denial of service when receiving malformed RRC messages. No additional execution privileges a...

Tenda AC6 安全漏洞

The Tenda AC6 is a wireless router from the Chinese company Tenda. A denial of service vulnerability exists in the Tenda AC6. The vulnerability stems from a failure to properly handle incoming error messages and can be exploited to cause a denial of service device crash via a long string in the...

Tenda AC7 Stack Buffer Overflow Vulnerability

Tenda AC7 is a home wireless router launched by Tenda brand, which is mainly positioned as a wall-penetrating enhanced dual-band gigabit device for home network coverage needs. The Tenda AC7 suffers from a stack buffer overflow vulnerability, which originates from the security5g parameter of...

Jensen of Scandinavia Eagle 1200AC 缓冲区错误漏洞

Jensen of Scandinavia Eagle 1200AC is a router from Jensen. A security vulnerability exists in the Jensen of Scandinavia Eagle 1200AC version V15.03.06.33en, which stems from a heap-based buffer overflow discovered in the wepkey5g parameter of the /goform/WifiBasicSet page...

CVE-2022-47120

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the security5g parameter at /goform/WifiBasicSet...

CVE-2022-36473

H3C B5 Mini B5MiniV100R005 was discovered to contain a stack overflow via the function EditBasicSSID5G...

CVE-2022-28373

Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 does not properly sanitize user-controlled parameters within the crtcreadpartition function of the crtcrpc JSON listener in /usr/lib/lua/luci/crtc.lua. A remote attacker on the local network can inject shell metacharacters to achieve remote code...

CVE-2022-28377

On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static account username/password for access control. This password can be generated via a binary included in the firmware, after ascertaining the MAC address of th...

PT-2022-18983 · Verizon · Verizon 5G Home Lvskihp Outdoorunit

Name of the Vulnerable Software and Affected Versions: Verizon 5G Home LVSKIHP OutDoorUnit ODU version 3.33.101.0 Description: The issue concerns the lack of proper sanitization of user-controlled parameters within the DMACC URLs on the Settings page of the Engineering portal. This allows an...

CVE-2022-28376

Verizon 5G Home LVSKIHP outside devices through 2022-02-15 allow anyone knowing the device's serial number to access a CPE admin website, e.g., at the 10.0.0.1 IP address. The password for the verizon username is calculated by concatenating the serial number and the model i.e., the LVSKIHP string...

PT-2022-18985 · Verizon · Verizon 5G Home

Name of the Vulnerable Software and Affected Versions: Verizon 5G Home LVSKIHP outside devices through 2022-02-15 Description: The issue allows anyone with knowledge of the device's serial number to access a CPE admin website, for example, at the "10.0.0.1" IP address. The password for the verizo...

多款Qualcomm产品权限许可和访问控制问题漏洞

The Qualcomm QCA6574AU and others are products of Qualcomm Incorporated.The QCA6574AU is a central processing unit CPU product.The SDX24 is a modem.The MDM9205 is a central processing unit CPU product. Qualcomm products are vulnerable to privilege license and access control issues. The affected...