CVE-2022-39063

Name of the Vulnerable Software and Affected Versions Open5GS UPF (affected versions not specified)

Description The issue occurs when Open5GS UPF receives a PFCP Session Establishment Request. It stores related values without checking the maximum length, which can lead to a memcpy() overwrite of fields after f teid in the pdr struct. If pdi.local f teid.len exceeds the maximum length of the f teid struct, the overwritten f teid len value is used as a length for memcpy(), potentially causing a segmentation fault if the value is large enough.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.