VYPR
Unrated severityNVD Advisory· Published Apr 22, 2025· Updated Apr 23, 2025

CVE-2025-29339

CVE-2025-29339

Description

An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability in PFCP session parameter validation. When processing a PFCP Session Establishment Request with PDN Type=0, the UPF fails to handle the invalid value propagated from SMF (or via direct attack), triggering a fatal assertion check and causing a daemon crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Open5GS/UPFdescription
  • Free5gc/Upfllm-fuzzy
    Range: <=2.7.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.