Lucene search
+L

6 matches found

Cvelist
Cvelist
added 2026/05/30 11:45 p.m.40 views

CVE-2026-10156 Open5GS nf-instances Endpoint nnrf-handler.c handle_amf_info resource consumption

A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handleamfinfo in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulation of the argument nfinfopool can lead to resource consumption. The attack may be performed from...

5.3CVSS0.00277EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/17 4:15 a.m.24 views

EUVD-2026-30680

A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogssbiclientadd in the library /lib/sbi/client.c of the component NRF. The manipulation of the argument clientpool leads to denial of service. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS5.4AI score0.0038EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.13 views

PT-2026-41517

A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogs sbi client add in the library /lib/sbi/client.c of the component NRF. The manipulation of the argument client pool leads to denial of service. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS5.4AI score0.0038EPSS
Exploits1References6
Code423n4
Code423n4
added 2023/02/01 12:0 a.m.12 views

First depositor can manipulate the invariant of a pool

Lines of code Vulnerability details Impact someone can call deposit upon pool creation, with a custom liquidity variable and small first deposit to change the behaviour of the pool, as a way to attack the protocol. even if a pool is setup and initialized correctly, there is not guaranteed that th...

6.7AI score
Exploits0
Code423n4
Code423n4
added 2022/02/17 12:0 a.m.11 views

ThecosomataETH.addLiquidity can be subject to sandwich attack

Lines of code Vulnerability details Impact Liquidity addition can happen at a manipulated pool state and result in receiving fewer LP shares than actual market state dictates Proof of Concept addLiquidity measures slippage based on the pool returned amount via calctokenamount: Pool returned amoun...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2022/01/26 12:0 a.m.13 views

Attacker can grief initial pool by providing 1 baseToken, 1 quoteToken, and manually transferring 1 baseToken

Handle camden Vulnerability details Impact Read the attack composition below. But the main criteria is that the attacker has to be the first person to provide liquidity. They can at least from my testing permanently grief a pool and make it impossible for any later person to get liquidity tokens,...

6.6AI score
Exploits0
Rows per page
Query Builder