Lixxxiang

#9094of 53,633
30Total CVSS
Vulnerabilities · 4
High
4
PT-2025-32473
7.5
2025-08-10
Open5Gs · Open5Gs · CVE-2025-8799
**Name of the Vulnerable Software and Affected Versions:** Open5GS versions up to 2.7.5 **Description:** A vulnerability exists in Open5GS that can lead to a denial of service. The issue is related to the `amf npcf am policy control build create`/`amf nsmf pdusession build create sm context` function within the AMF component, specifically in the file `src/amf/npcf-build.c`. This manipulation can be triggered remotely. The exploit for this issue has been publicly disclosed. **Recommendations:** Open5GS versions prior to 2.7.6: Upgrade to version 2.7.6 to address this issue.
PT-2025-32475
7.5
2025-08-10
Open5Gs · Open5Gs · CVE-2025-8801
Name of the Vulnerable Software and Affected Versions: Open5GS versions prior to 2.7.6 Description: A problematic issue has been identified in Open5GS. This issue affects the `gmm state exception` function within the `src/amf/gmm-sm.c` file of the AMF component. Manipulation of this function can lead to a denial of service. The attack can be initiated remotely. The exploit for this issue has been publicly disclosed and may be utilized. Recommendations: Upgrade to version 2.7.6 or later to address this issue.
PT-2025-32476
7.5
2025-08-10
Open5Gs · Open5Gs · CVE-2025-8802
**Name of the Vulnerable Software and Affected Versions:** Open5GS versions prior to 2.7.6 **Description:** A problematic issue was identified in Open5GS. The vulnerability affects the `smf state operational` function within the `src/smf/smf-sm.c` file of the SMF component. Manipulation of the argument stream can lead to a denial of service. The attack can be initiated remotely, and the exploit has been publicly disclosed. **Recommendations:** Upgrade to version 2.7.6 or later to address this issue.
PT-2025-32478
7.5
2025-08-10
Open5Gs · Open5Gs · CVE-2025-8804
**Name of the Vulnerable Software and Affected Versions:** Open5GS versions up to 2.7.5 **Description:** A vulnerability has been identified in Open5GS, classified as problematic. The vulnerability affects the `ngap build downlink nas transport` function within the AMF component. Manipulation of this function can lead to a reachable assertion, allowing for remote attacks. The exploit for this issue has been publicly disclosed. **Recommendations:** Open5GS version 2.7.6 addresses this issue. Upgrade to version 2.7.6.