VYPR
Unrated severityNVD Advisory· Published May 4, 2024· Updated Aug 2, 2024

CVE-2024-34476

CVE-2024-34476

Description

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in lib/nas/common/security.c for pkbuf->len.

Affected products

2
  • Open5gs/Open5gscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <2.7.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.