漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are susceptible to an assertion-based crash when an oversized NAS packet is received. An attacker may leverage this behavior to repeatedly crash the MME via either a compromised base station or via an unauthenticated cellphone within range of a base station managed by the MME, causing a denial of service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Magma 安全漏洞
Vulnerability Description
Magma是Magma开源的一个开源软件平台。为网络运营商提供开放、灵活和可扩展的移动核心网络解决方案。 Magma 1.8.0版本存在安全漏洞,该漏洞源于当收到超大 NAS 数据包时,容易发生基于断言的崩溃。攻击者可以利用此行为通过受感染的基站或Mobile Management Entity管理的基站范围内未经身份验证的手机反复使Mobile Management Entity崩溃,从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A