Latest high severity vulnerabilities for vendor "open5gs"

Open5GSAn issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific…

high

7.5

First published (updated )

CVE-2024-56921

Open5GSAn issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the ogs_dbi_au…

high

7.5

First published (updated )

CVE-2024-57519

Open5GSA reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to ca…

high

7.5

First published (updated )

CVE-2024-24430

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a sufficientl…

high

7.3

First published (updated )

CVE-2023-37013

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

high

8.6

First published (updated )

CVE-2023-37015

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

high

7.5

First published (updated )

CVE-2023-37014

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

high

8.6

First published (updated )

CVE-2023-37016

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

high

8.6

First published (updated )

CVE-2023-37017

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

high

8.6

First published (updated )

CVE-2023-37018

Open5GSOpen5GS MME versions <= 2.6.4 contain a reachable assertion in the `UE Context Release Request` pack…

high

7.5

First published (updated )

CVE-2023-37022

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

high

8.6

First published (updated )

CVE-2023-37020

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

high

8.6

First published (updated )

CVE-2023-37019

Open5GSOpen5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed AS…

high

8.6

First published (updated )

CVE-2023-37021

Open5GSOpen5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet han…

high

8.6

First published (updated )

CVE-2023-37023

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

high

8.6

First published (updated )

CVE-2024-34235

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Open5GSA reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows attackers t…

high

8.6

First published (updated )

CVE-2024-24429

Open5GSA reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to ca…

high

7.5

First published (updated )

CVE-2024-24428

Open5GSA reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause …

high

7.5

First published (updated )

CVE-2024-24427

Open5GSOS Command Injection

high

7.5

First published (updated )

CVE-2024-24431

Open5GSOpen5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS mess…

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-34475

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Open5GSAn issue was discovered in open5gs v2.6.6. SIGPIPE can be used to crash AMF.

high

7.5

First published (updated )

CVE-2023-50020

Open5GSMultiple vulnerabilities in Open5GS

high

7.5

First published (updated )

CVE-2023-4884

Open5GSMultiple vulnerabilities in Open5GS

high

7.5

First published (updated )

CVE-2023-4883

Open5GSMultiple vulnerabilities in Open5GS

high

7.5

First published (updated )

CVE-2023-4882

Open5GSDue to insufficient length validation in the Open5GS GTP library versions prior to versions 2.4.13 a…

high

7.5

First published (updated )

CVE-2023-23846

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This vulner…

high

7.5

First published (updated )

CVE-2022-43223

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component src/upf/pfcp-path.c. This v…

high

7.5

First published (updated )

CVE-2022-43221

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component src/smf/pfcp-path.c. This v…

high

7.5

First published (updated )

CVE-2022-43222

Open5GSA vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of servi…

high

7.5

First published (updated )

CVE-2022-40890

Open5GSOpen5GS UDP Packet ogs-tlv-msg.c denial of service

high

7.5

First published (updated )

CVE-2022-3354

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Software

Open5GSAn issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a specific…

Open5GSAn issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the ogs_dbi_au…

Open5GSA reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to ca…

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a sufficientl…

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

Never miss a vulnerability like this again

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

Open5GSOpen5GS MME versions <= 2.6.4 contain a reachable assertion in the `UE Context Release Request` pack…

Never miss a vulnerability like this again

Open5GSOpen5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed AS…

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

Open5GSOpen5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed AS…

Open5GSOpen5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet han…

Open5GSOpen5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed A…

Never miss a vulnerability like this again

Open5GSA reachable assertion in the nas_eps_send_emm_to_esm function of Open5GS <= 2.6.4 allows attackers t…

Open5GSA reachable assertion in the oai_nas_5gmm_decode function of Open5GS <= 2.6.4 allows attackers to ca…

Open5GSA reachable assertion in the amf_ue_set_suci function of Open5GS <= 2.6.4 allows attackers to cause …

Open5GSOS Command Injection

Open5GSOpen5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS mess…

Never miss a vulnerability like this again

Open5GSAn issue was discovered in open5gs v2.6.6. SIGPIPE can be used to crash AMF.

Open5GSMultiple vulnerabilities in Open5GS

Open5GSMultiple vulnerabilities in Open5GS

Open5GSMultiple vulnerabilities in Open5GS

Open5GSDue to insufficient length validation in the Open5GS GTP library versions prior to versions 2.4.13 a…

Never miss a vulnerability like this again

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component ngap-handler.c. This vulner…

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component src/upf/pfcp-path.c. This v…

Open5GSopen5gs v2.4.11 was discovered to contain a memory leak in the component src/smf/pfcp-path.c. This v…

Open5GSA vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and earlier leads to AMF denial of servi…

Open5GSOpen5GS UDP Packet ogs-tlv-msg.c denial of service

Never miss a vulnerability like this again

Company

Resources

Contact