Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of the S1AP handler. This buffer overflow causes type confusion in decoded fields, leading to invalid parsing and freeing of memory. An attacker may use this to crash an MME or potentially execute code in certain circumstances.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cellularsecurity.org/ransacked |
![]() ![]() |
History
Tue, 22 Apr 2025 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Open5gs
Open5gs open5gs |
|
CPEs | cpe:2.3:a:open5gs:open5gs:*:*:*:*:*:*:*:* | |
Vendors & Products |
Open5gs
Open5gs open5gs |
Tue, 28 Jan 2025 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-617 | |
Metrics |
cvssV3_1
|
Wed, 22 Jan 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of the S1AP handler. This buffer overflow causes type confusion in decoded fields, leading to invalid parsing and freeing of memory. An attacker may use this to crash an MME or potentially execute code in certain circumstances. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published: 2025-01-22T00:00:00.000Z
Updated: 2025-01-28T21:19:16.362Z
Reserved: 2023-06-28T00:00:00.000Z
Link: CVE-2023-37008

Updated: 2025-01-28T21:19:10.161Z

Status : Analyzed
Published: 2025-01-22T15:15:10.373
Modified: 2025-04-22T17:14:06.613
Link: CVE-2023-37008

No data.