CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-40947

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00373EPSS

RedhatCVE•added 2025/05/23 2:17 a.m.•3 views

CVE-2023-37035

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP S1Setup Request packet missing an expected Global eNB ID field...

6.5CVSS6.9AI score0.00248EPSS

RedhatCVE•added 2025/05/23 2:17 a.m.•4 views

CVE-2023-37028

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Modification Indication packet missing an expected eNBUES1APID field...

6.5CVSS6.8AI score0.004EPSS

RedhatCVE•added 2025/05/23 2:17 a.m.•4 views

CVE-2023-37027

Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Modification Indication packet missing an expected eNBUES1APID field...

6.5CVSS6.8AI score0.00373EPSS

RedhatCVE•added 2025/05/23 2:17 a.m.•7 views

CVE-2023-37036

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected ENBUES1APID field...

6.5CVSS6.8AI score0.00373EPSS

CNVD•added 2025/01/24 12:0 a.m.•19 views

Magma null pointer dereference vulnerability (CNVD-2025-02448)

Magma is an open source software platform from Magma Open Source. Provides network operators with an open, flexible and scalable mobile core network solution. Magma has a null pointer dereference vulnerability that can be exploited by an attacker to crash MME via S1AP E-RAB Release Response, a...

6.5CVSS6.8AI score0.00248EPSS

OSV•added 2025/01/21 11:15 p.m.•9 views

CVE-2023-37037

OSV•added 2025/01/21 11:15 p.m.•4 views

CVE-2023-37038

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected MMEUES1APID field...

NVD•added 2025/01/21 11:15 p.m.•14 views

CVE-2023-37037

OSV•added 2025/01/21 11:15 p.m.•10 views

CVE-2023-37031

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP eNB Configuration Transfer packet missing its required Target eNB ID field...

OSV•added 2025/01/21 11:15 p.m.•3 views

CVE-2023-37028

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Modification Indication packet missing an expected eNBUES1APID field...

NVD•added 2025/01/21 11:15 p.m.•9 views

CVE-2023-37034

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected TAI field...

NVD•added 2025/01/21 11:15 p.m.•9 views

CVE-2023-37036

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected ENBUES1APID field...

NVD•added 2025/01/21 11:15 p.m.•12 views

CVE-2023-37027

Vulnrichment•added 2025/01/21 12:0 a.m.•5 views

CVE-2023-37026

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Release Response packet missing an expected MMEUES1APID field...

6.6AI score0.00248EPSS

CVE•added 2025/01/21 12:0 a.m.•44 views

CVE-2023-37037

Magma's Mobile Management Entity (MME) contains a null pointer dereference in versions

6.5CVSS6.9AI score0.00373EPSS

Exploits1References1Affected Software1

Cvelist•added 2025/01/21 12:0 a.m.•8 views

CVE-2023-37028

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Modification Indication packet missing an expected eNBUES1APID field...

0.004EPSS

CVE•added 2025/01/21 12:0 a.m.•46 views

CVE-2023-37038

CVE-2023-37038 describes a null pointer dereference in Magma’s Mobile Management Entity (MME). The vulnerability affects Magma up to version 1.8.0 and allows network-adjacent attackers to crash the MME by sending an S1AP “Uplink NAS Transport” packet that omits the required MME_UE_S1AP_ID field. ...

6.5CVSS6.5AI score0.00373EPSS

Exploits1References1Affected Software1

Cvelist•added 2025/01/21 12:0 a.m.•8 views

CVE-2023-37038

A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected MMEUES1APID field...

0.00373EPSS