108 matches found
CVE-2024-24449
CVE-2024-24449 arises from an uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF (versions up to 2.0.0). This flaw can enable a Denial of Service (DoS) via a crafted InitialUEMessage sent to the AMF. The issue is observable from a network contact point ...
CVE-2024-24446
CVE-2024-24446 affects OpenAirInterface CN5G AMF up to version 2.0.0. The vulnerability is an uninitialized pointer dereference in the AMF that can be triggered by a crafted InitialContextSetupResponse, leading to a Denial of Service (DoS). Public sources in connected documents confirm the issue ...
CVE-2024-24447
CVE-2024-24447 describes a buffer overflow in the ngap_amf_handle_pdu_session_resource_setup_response function of oai-cn5g-amf up to v2.0.0, enabling a Denial of Service via a PDU Session Resource Setup Response with an empty Response Item list. Affected software: oai-cn5g-amf
CVE-2024-24449
An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service DoS via a crafted InitialUEMessage message sent to the AMF...
PT-2024-20396 · Unknown · Openairinterface Cn5G Amf
Name of the Vulnerable Software and Affected Versions: OpenAirInterface CN5G AMF versions up to 2.0.0 Description: The issue is caused by an uninitialized pointer dereference, allowing attackers to cause a Denial of Service DoS via a crafted InitialContextSetupResponse message sent to the AMF...
CVE-2024-24426
Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...
CVE-2024-24450
CVE-2024-24450 affects OpenAirInterface CN5G AMF
OpenAirInterface CN5G AMF 安全漏洞
OpenAirInterface CN5G AMF is an OpenAirInterface open source application. A security vulnerability exists in OpenAirInterface CN5G AMF v2.0.0 and earlier versions, which stems from the presence of a stack-based buffer overflow that allows a remote attacker to execute code by sending a response wi...