Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In OpenAirInterface V2.2.0 AMF, Out of sequence messages causes incorrect state transition during UE registration procedure. This allows authentication to be bypassed completely. If a SecurityModeComplete message is sent after InitialUERegistration, a registration reject is received followed by a registration accept! This leads the UE to be registered without proper authentication.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenAirInterface 安全漏洞
Vulnerability Description
OpenAirInterface是法国OpenAirInterface公司的一个移动通信网络软件平台。 OpenAirInterface V2.2.0 AMF存在安全漏洞,该漏洞源于消息顺序错误导致UE注册过程中的状态转换不正确,可能导致完全绕过身份验证。
CVSS Information
N/A
Vulnerability Type
N/A