Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are susceptible to an assertion-based crash when an oversized NAS packet is received. An attacker may leverage this behavior to repeatedly crash the MME via either a compromised base station or via an unauthenticated cellphone within range of a base station managed by the MME, causing a denial of service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Magma 安全漏洞
Vulnerability Description
Magma是Magma开源的一个开源软件平台。为网络运营商提供开放、灵活和可扩展的移动核心网络解决方案。 Magma 1.8.0版本存在安全漏洞,该漏洞源于当收到超大 NAS 数据包时,容易发生基于断言的崩溃。攻击者可以利用此行为通过受感染的基站或Mobile Management Entity管理的基站范围内未经身份验证的手机反复使Mobile Management Entity崩溃,从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A