17 matches found
EUVD-2025-24084
Malicious code in bioql PyPI...
EUVD-2025-24082
Malicious code in bioql PyPI...
CVE-2025-8801
A vulnerability was found in Open5GS up to 2.7.5. This affects the function gmmstateexception of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...
CVE-2025-8805 Open5GS SMF gsm-sm.c smf_gsm_state_wait_pfcp_deletion denial of service
A vulnerability was determined in Open5GS up to 2.7.5. Affected by this issue is the function smfgsmstatewaitpfcpdeletion of the file src/smf/gsm-sm.c of the component SMF. The manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the publ...
CVE-2025-8803
A vulnerability has been found in Open5GS up to 2.7.5. Affected is the function gmmstatederegistered/gmmstateexception of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 2.7.6 is able t...
CVE-2025-8803 Open5GS AMF gmm-sm.c gmm_state_exception denial of service
A vulnerability has been found in Open5GS up to 2.7.5. Affected is the function gmmstatederegistered/gmmstateexception of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 2.7.6 is able t...
CVE-2025-8803
Open5GS AMF is affected by CVE-2025-8803. The vulnerability resides in the gmm_state_de_registered and gmm_state_exception functions in src/amf/gmm-sm.c, enabling a remote-denial of service via manipulation. Upgrading to version 2.7.6 addresses the issue; the patch is identified as 1f30edac27f69f...
CVE-2025-8802
A vulnerability was determined in Open5GS up to 2.7.5. This vulnerability affects the function smfstateoperational of the file src/smf/smf-sm.c of the component SMF. The manipulation of the argument stream leads to denial of service. The attack can be initiated remotely. The exploit has been...
CVE-2025-8801
A vulnerability was found in Open5GS up to 2.7.5. This affects the function gmmstateexception of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...
CVE-2025-8801 Open5GS AMF gmm-sm.c gmm_state_exception denial of service
A vulnerability was found in Open5GS up to 2.7.5. This affects the function gmmstateexception of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be use...
CVE-2025-8800
A vulnerability has been found in Open5GS up to 2.7.5. Affected by this issue is the function esmhandlepdnconnectivityrequest of the file src/mme/esm-handler.c of the component AMF Component. The manipulation leads to denial of service. The attack may be launched remotely. Upgrading to version...
PT-2025-32479 · Open5Gs · Open5Gs
Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5 Description: A vulnerability exists in Open5GS that is classified as problematic. The issue affects the smf gsm state wait pfcp deletion function within the src/smf/gsm-sm.c file of the SMF component. Manipulation...
PT-2025-32474 · Open5Gs · Open5Gs
Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5 Description: A vulnerability exists in Open5GS that can lead to a denial of service. The issue affects the esm handle pdn connectivity request function within the AMF Component, specifically in the...
PT-2025-32475 · Open5Gs · Open5Gs
Name of the Vulnerable Software and Affected Versions: Open5GS versions prior to 2.7.6 Description: A problematic issue has been identified in Open5GS. This issue affects the gmm state exception function within the src/amf/gmm-sm.c file of the AMF component. Manipulation of this function can lead...
PT-2025-32478 · Open5Gs · Open5Gs
Name of the Vulnerable Software and Affected Versions: Open5GS versions up to 2.7.5 Description: A vulnerability has been identified in Open5GS, classified as problematic. The vulnerability affects the ngap build downlink nas transport function within the AMF component. Manipulation of this...
SQL Injection
Overview z-push/z-push-dev is an open-source application to synchronize ActiveSync compatible devices Affected versions of this package are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inject malicious commands by manipulating the username field ...
PT-2024-16247 · WordPress · Tutor Lms
Name of the Vulnerable Software and Affected Versions: Tutor LMS plugin for WordPress versions up to, and including, 2.7.6 Description: The issue is related to SQL Injection via the rating filter parameter due to insufficient escaping on the user-supplied parameter and lack of sufficient...