VYPR
Unrated severityNVD Advisory· Published Jan 21, 2025· Updated Mar 13, 2025

CVE-2023-37038

CVE-2023-37038

Description

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to crash the MME via an S1AP Uplink NAS Transport packet missing an expected MME_UE_S1AP_ID field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Magma/Mobile Management Entitydescription
  • Magma/Magmallm-fuzzy
    Range: <=1.8.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.