Zyc010101

Name of the Vulnerable Software and Affected Versions: Open5GS versions through 2.7.5 Description: A security flaw has been discovered in Open5GS. The vulnerability resides in the `gmm state exception` function within the `src/amf/gmm-sm.c` file. Manipulation of the function results in a reachable assertion, and the attack can be launched remotely. The exploit for this issue has been publicly released and may be exploited. Recommendations: Open5GS versions through 2.7.5: Apply patch 8e5fed16114f2f5e40bee1b161914b592b2b7b8f to resolve this issue.

**Name of the Vulnerable Software and Affected Versions:** Open5GS versions up to 2.7.5 **Description:** A vulnerability exists in Open5GS that can lead to a denial of service. The issue affects the `esm handle pdn connectivity request` function within the AMF Component, specifically in the `src/mme/esm-handler.c` file. The manipulation of this function can be exploited remotely to disrupt service. **Recommendations:** Open5GS versions prior to 2.7.6: Upgrade to version 2.7.6 to address this issue.