Unrated severityNVD Advisory· Published Jan 22, 2025· Updated Jan 27, 2025
CVE-2023-37012
CVE-2023-37012
Description
Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an Initial UE Message message missing a required PLMN Identity field to repeatedly crash the MME, resulting in denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Open5GS/MMEdescription
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.