Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple vulnerabilities in Open5GS
Vulnerability Description
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF (Virtual Network Function), and triggering the ogs_sbi_message_free function, which could cause a service outage.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
对无效指针或索引的释放
Vulnerability Title
Open5GS 安全漏洞
Vulnerability Description
Open5GS是一个 5G Core 和 Epc 的 C 语言开源实现,即 Lte/Nr 网络的核心网络。 Open5GS 2.4.10及之前版本存在安全漏洞,该漏洞源于存在指针释放无效的问题。攻击者可利用该漏洞通过向VN(虚拟网络函数)发送特制的json字符串导致服务中断。
CVSS Information
N/A
Vulnerability Type
N/A