Lucene search
K

999 matches found

CNNVD
CNNVD
added 2026/05/07 12:0 a.m.8 views

Ivanti EPMM 访问控制错误漏洞

Ivanti EPMM is a product developed by the American company Ivanti, designed to help IT departments create policies for mobile devices, applications, and content. Versions of Ivanti EPMM prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1 contained an access control vulnerability. This vulnerability stemmed...

9.8CVSS6AI score0.00819EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/05 2:20 a.m.7 views

CVE-2026-7706

A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function gmmhandleservicerequest of the file /src/amf/gmm-handler.c of the component AMF. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public a...

5.3CVSS5.3AI score0.00276EPSS
Exploits0References1
CVE
CVE
added 2026/05/03 10:15 p.m.16 views

CVE-2026-7706

Open5GS AMF vulnerability CVE-2026-7706 affects the function gmm_handle_service_request in the file /src/amf/gmm-handler.c. The issue enables a remote denial of service. Public exploit exists per the description, and the project was notified via issue reports with no public response noted. Affect...

5.3CVSS5.3AI score0.00276EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/03 12:0 a.m.12 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the AMF component called gmmhandleservicerequest i...

5.3CVSS5.8AI score0.00276EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.11 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.6 and earlier contain security vulnerabilities. These vulnerabilities stem from improper handling of parameters regtype by unknown functions in...

5.3CVSS5.8AI score0.00398EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/01 4:45 p.m.4 views

EUVD-2026-26699

A vulnerability has been found in Open5GS up to 2.7.7. This vulnerability affects the function amfnsmfpdusessionhandleupdatesmcontext of the file /src/amf/nsmf-handler.c of the component AMF. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit...

5.3CVSS5.3AI score0.00306EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/01 4:0 p.m.4 views

CVE-2026-7586 Open5GS AMF nudm-handler.c ogs_id_get_value denial of service

A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogsidgetvalue of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been made available to the public and...

5.3CVSS5.4AI score0.00299EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/01 4:0 p.m.8 views

EUVD-2026-26680

A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogsidgetvalue of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been made available to the public and...

5.3CVSS5.4AI score0.00299EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.10 views

PT-2026-36260

A flaw has been found in Open5GS up to 2.7.7. This issue affects the function amf namf callback handle sdm data change notify of the file /namf-callback/v1/id/sdmsubscription-notify of the component AMF SBI Endpoint. This manipulation of the argument changeItem.newValue causes denial of service...

5.3CVSS5.5AI score0.00364EPSS
Exploits0References6
NVD
NVD
added 2026/04/07 3:17 p.m.11 views

CVE-2026-30079

In OpenAirInterface V2.2.0 AMF, Out of sequence messages causes incorrect state transition during UE registration procedure. This allows authentication to be bypassed completely. If a SecurityModeComplete message is sent after InitialUERegistration, a registration reject is received followed by a...

9.8CVSS0.00526EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/06 3:31 p.m.5 views

EUVD-2026-19237

OpenAirInterface V2.2.0 AMF crashes when it receives an NGAP message with invalid procedure code or invalid PDU-type. For example when the message specification requires InitiatingMessage but sent with successfulOutcome...

7.5CVSS6AI score0.00292EPSS
Exploits1References3
NVD
NVD
added 2026/04/06 2:16 p.m.5 views

CVE-2026-30078

OpenAirInterface V2.2.0 AMF crashes when it receives an NGAP message with invalid procedure code or invalid PDU-type. For example when the message specification requires InitiatingMessage but sent with successfulOutcome...

7.5CVSS0.00292EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.6 views

PT-2026-30603

OpenAirInterface V2.2.0 AMF crashes when it receives an NGAP message with invalid procedure code or invalid PDU-type. For example when the message specification requires InitiatingMessage but sent with successfulOutcome...

7.5CVSS6AI score0.00292EPSS
Exploits1References3
NVD
NVD
added 2026/03/30 6:16 p.m.4 views

CVE-2026-30077

OpenAirInterface V2.2.0 AMF crashes when it fails to decode the message. Not all decode failures result in a crash. But the crash is consistent for particular inputs. An example input in hex stream is 80 00 00 0E 00 00 01 00 0F 80 02 02 40 00 58 00 01 88...

7.5CVSS0.00267EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.7 views

OpenAirInterface 安全漏洞

OpenAirInterface is a mobile communication network software platform developed by the French company OpenAirInterface. Version OpenAirInterface V2.2.0 contains a security vulnerability; this vulnerability stems from failed decoding of messages, which may lead to an AMF crash...

7.5CVSS5.8AI score0.00267EPSS
Exploits0References3
CVE
CVE
added 2026/03/30 12:0 a.m.9 views

CVE-2026-30077

OpenAirInterface V2.2.0 AMF is affected by a crash when handling certain message decode failures. The issue is not triggered by all decode failures, but is reproducible for specific inputs (example hex stream: 80 00 00 0E 00 00 01 00 0F 80 02 02 40 00 58 00 01 88). Connected sources confirm the p...

7.5CVSS5.9AI score0.00267EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/27 8:55 p.m.14 views

CVE-2026-33904

Ella Core is a 5G private-network core. In versions prior to 1.7.0, a deadlock in the AMF SCTP notification handler causes the entire AMF control plane to hang, enabling a denial of service when an attacker with access to the N2 interface sends crafted SCTP notifications. Version 1.7.0 adds defer...

6.5CVSS5.9AI score0.00165EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/27 8:55 p.m.21 views

CVE-2026-33904 Ella Core has a Denial of Service via SCTP connection cleanup deadlock

Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, a deadlock in the AMF's SCTP notification handler causes the entire AMF control plane to hang until the process is restarted. An attacker with access to the N2 interface can cause Ella Core to hang, resulting in a denia...

6.5CVSS0.00165EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.8 views

Ella Core 安全漏洞

Ella Core is an open-source solution developed by Ella Networks for use in private networks as a 5G core network solution. Versions of Ella Core prior to 1.7.0 contained security vulnerabilities. These vulnerabilities stemmed from deadlocks in the SCTP notification handler of AMF, which could all...

6.5CVSS5.8AI score0.00165EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.7 views

CVE-2026-30653

An issue in Free5GC v.4.2.0 and before allows a remote attacker to cause a denial of service via the function HandleAuthenticationFailure of the component AMF...

7.5CVSS5.7AI score0.00392EPSS
Exploits1References1
Rows per page
Query Builder