PT-2025-1415 · Open5Gs · Open5Gs
Published
2025-01-22
·
Updated
2025-01-23
·
CVE-2023-37023
CVSS v3.1
8.6
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Open5GS MME versions prior to 2.6.4
Description
The issue is related to a reachable assertion in the
Uplink NAS Transport packet handler. A packet missing its MME UE S1AP ID field causes Open5GS to crash. An attacker may repeatedly send such packets to cause a denial of service.Recommendations
For versions prior to 2.6.4, update to version 2.6.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the
Uplink NAS Transport packet handler to minimize the risk of exploitation. Avoid processing packets missing the MME UE S1AP ID field in the affected packet handler until the issue is resolved.Exploit
Fix
Assertion Failure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Open5Gs