CVE-2024-34475 | Open5GS up to 2.7.0 NAS Message amf/gmm-sm.c gmm_state_authentication assertion

Inserito da Angelo Barbosa | Mag 5, 2024 | CVE

A vulnerability was found in Open5GS up to 2.7.0. It has been classified as critical. Affected is the function gmm_state_authentication of the file amf/gmm-sm.c of the component NAS Message Handler. The manipulation leads to reachable assertion.

This vulnerability is traded as CVE-2024-34475. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34475 | Open5GS up to 2.7.0 NAS Message amf/gmm-sm.c gmm_state_authentication assertion

Post correlati

CVE-2024-39460 | Bitbucket Branch Source Plugin up to 886.v44cf5e4ecec5 on Jenkins OAuth Access Token log file

CVE-2024-42243 | Linux Kernel up to 6.6.40/6.9.9 lib/xarray.c allocation of resources (a0c42ddd0969/333c5539a31f/099d90642a71)

CVE-2024-30583 | Tenda FH1202 1.2.0.14(408) /goform/addressNat fromAddressNat mitInterface stack-based overflow

CVE-2024-4680 | ZenML up to 0.56.3 session expiration