Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open5gs open5gs vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2021-28122
A request-validation issue exists in Open5GS 2.1.3 up to and including 2.2.x prior to 2.2.1. The WebUI component allows an unauthenticated user to use a crafted HTTP API request to create, read, update, or delete entries in the subscriber database. For example, new administrative...
Open5gs Open5gs
NA
CVE-2022-3354
A vulnerability has been found in Open5GS up to 2.4.10 and classified as problematic. This vulnerability affects unknown code in the library lib/core/ogs-tlv-msg.c of the component UDP Packet Handler. The manipulation leads to denial of service. The exploit has been disclosed to ...
Open5gs Open5gs
NA
CVE-2022-40890
A vulnerability in /src/amf/amf-context.c in Open5GS 2.4.10 and previous versions leads to AMF denial of service.
Open5gs Open5gs
1 Github repository
445
VMScore
CVE-2021-44081
A buffer overflow vulnerability exists in the AMF of open5gs 2.1.4. When the length of MSIN in Supi exceeds 24 characters, it leads to AMF denial of service.
Open5gs Open5gs 2.1.4
740
VMScore
CVE-2021-25863
Open5GS 2.1.3 listens on 0.0.0.0:3000 and has a default password of 1423 for the admin account.
Open5gs Open5gs 2.1.3
NA
CVE-2022-43221
open5gs v2.4.11 exists to contain a memory leak in the component src/upf/pfcp-path.c. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted PFCP packet.
Open5gs Open5gs 2.4.11
NA
CVE-2022-43222
open5gs v2.4.11 exists to contain a memory leak in the component src/smf/pfcp-path.c. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted PFCP packet.
Open5gs Open5gs 2.4.11
445
VMScore
CVE-2021-45462
In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF.
Open5gs Open5gs 2.4.0
NA
CVE-2022-43223
open5gs v2.4.11 exists to contain a memory leak in the component ngap-handler.c. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted UE attachment.
Open5gs Open5gs 2.4.11
NA
CVE-2023-50019
An issue exists in open5gs v2.6.6. InitialUEMessage, Registration request sent at a specific time can crash AMF due to incorrect error handling of Nudm_UECM_Registration response.
Open5gs Open5gs 2.6.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »