Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Open5gsOpen5gs

70 matches found

CVE
CVEadded 2021/10/07 3:15 p.m.36 views

CVE-2021-41794

ogs_fqdn_parse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker can send a PFCP Session Establishment Request with "internet" as the PDI Network Instance. The first character is interpreted as a length value to be used ...

7.5CVSS7.5AI score0.00397EPSS
CVE
CVEadded 2022/09/28 4:15 p.m.36 views

CVE-2022-3354

A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This vulnerability affects unknown code in the library lib/core/ogs-tlv-msg.c of the component UDP Packet Handler. The manipulation leads to denial of service. The exploit has been disclosed to the public and may ...

7.5CVSS5.7AI score0.0006EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.36 views

CVE-2023-37004

Open5GS MME versions

5.3CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.36 views

CVE-2023-37017

Open5GS MME versions

8.6CVSS6.8AI score0.00044EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.36 views

CVE-2023-37019

Open5GS MME versions

8.6CVSS6.4AI score0.00044EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.36 views

CVE-2023-37023

Open5GS MME versions

8.6CVSS6.4AI score0.00044EPSS
CVE
CVEadded 2023/02/01 3:15 a.m.35 views

CVE-2023-23846

Due to insufficient length validation in the Open5GS GTP library versions prior to versions 2.4.13 and 2.5.7, when parsing extension headers in GPRS tunneling protocol (GPTv1-U) messages, a protocol payload with any extension header length set to zero causes an infinite loop. The affected process b...

7.5CVSS7.3AI score0.00143EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.35 views

CVE-2023-37005

Open5GS MME versions

5.3CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.35 views

CVE-2023-37009

Open5GS MME versions

6.3CVSS6.8AI score0.00054EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.35 views

CVE-2023-37018

Open5GS MME versions

8.6CVSS6.8AI score0.00044EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.34 views

CVE-2023-37002

Open5GS MME versions

5.3CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.34 views

CVE-2023-37010

Open5GS MME versions

6.3CVSS7AI score0.00054EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.34 views

CVE-2023-37021

Open5GS MME version

8.6CVSS6.4AI score0.00044EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.34 views

CVE-2024-34235

Open5GS MME versions

8.6CVSS6.8AI score0.0005EPSS
CVE
CVEadded 2025/01/22 3:15 p.m.33 views

CVE-2023-37006

Open5GS MME versions

5.3CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2025/06/18 6:15 p.m.17 views

CVE-2025-29646

An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of Service via a crafted PFCP SessionEstablishmentRequest packet with restoration indication = true and (teid = 0 or teid >= ogs_pfcp_pdr_teid_pool.size).

7.1CVSS6.5AI score0.00056EPSS
CVE
CVEadded 2025/06/18 4:15 p.m.16 views

CVE-2025-44951

A missing length check in ogs_pfcp_dev_add function from PFCP library, used by both smf and upf in open5gs 2.7.2 and earlier, allows a local attacker to cause a Buffer Overflow by changing the session.dev field with a value with length greater than 32.

7.1CVSS6.3AI score0.00024EPSS
CVE
CVEadded 2025/06/18 4:15 p.m.14 views

CVE-2025-44952

A missing length check in ogs_pfcp_subnet_add function from PFCP library, used by both smf and upf in open5gs 2.7.2 and earlier, allows a local attacker to cause a Buffer Overflow by changing the session.dnn field with a value with length greater than 101.

7.8CVSS6.3AI score0.00022EPSS
CVE
CVEadded 2025/07/12 7:15 p.m.8 views

CVE-2025-7485

A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this vulnerability is the function ngap_recv_handler/s1ap_recv_handler/recv_handler of the component SCTP Partial Message Handler. The manipulation leads to reachable assertion. The attack needs to be approached...

4.8CVSS4AI score0.00014EPSS
CVE
CVEadded 2025/07/01 12:15 p.m.6 views

CVE-2025-6952

A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.5. This issue affects the function amf_state_operational of the file src/amf/amf-sm.c of the component AMF Service. The manipulation leads to reachable assertion. It is possible to launch the attack on the loc...

4.8CVSS4AI score0.00017EPSS
Total number of security vulnerabilities70