Open5GS MME versions <= 2.6.4 contain an assertion that... · CVE-2023-37007 · GitHub Advisory Database · GitHub

Open5GS MME versions <= 2.6.4 contain an assertion that...

Moderate severity Unreviewed Published Jan 22, 2025 to the GitHub Advisory Database • Updated Jan 29, 2025

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a Handover Cancel message missing a required MME_UE_S1AP_ID field to repeatedly crash the MME, resulting in denial of service.

References

Published by the National Vulnerability Database

Jan 22, 2025

Published to the GitHub Advisory Database Jan 22, 2025

Last updated Jan 29, 2025

Severity

Moderate

/ 10

CVSS v3 base metrics

Attack vector

Local

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L