Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
omec-project UPF PFCP Session Establishment Request messages_session.go handleSessionEstablishmentRequest null pointer dereference
Vulnerability Description
A flaw has been found in omec-project UPF up to 2.1.3-dev. This affects the function handleSessionEstablishmentRequest of the file /pfcpiface/pfcpiface/messages_session.go of the component PFCP Session Establishment Request Handler. This manipulation causes null pointer dereference. The attack may be initiated remotely. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
空指针解引用
Vulnerability Title
UPF 代码问题漏洞
Vulnerability Description
UPF是Aether SD-Core Project开源的一个用户界面。 UPF 2.1.3-dev及之前版本存在代码问题漏洞,该漏洞源于文件/pfcpiface/pfcpiface/messages_session.go中PFCP Session Establishment Request Handler组件函数handleSessionEstablishmentRequest存在空指针取消引用。
CVSS Information
N/A
Vulnerability Type
N/A