3 matches found
EUVD-2021-28802
Malicious code in bioql PyPI...
CVE-2021-41794
Open5GS CVE-2021-41794 affects Open5GS versions 1.0.0–2.3.3. The function ogs_fqdn_parse trusts a client-supplied length and uses it in a memcpy into a 100-byte stack buffer, enabling a buffer overflow when processing a PFCP Session Establishment Request with a crafted PDI Network Instance (e.g.,...
CVE-2021-41794
ogsfqdnparse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker can send a PFCP Session Establishment Request with "internet" as the PDI Network Instance. The first character is interpreted as a length value to be used ...