In free5GC 3.2.1, a malformed NGAP message can crash the AMF and NGAP decoders via an index-out-of-range panic in aper.GetBitString.
References
Link | Resource |
---|---|
https://github.com/free5gc/free5gc/issues/402 | Exploit Issue Tracking Third Party Advisory |
https://www.trendmicro.com/en_us/research/23/j/asn1-vulnerabilities-in-5g-cores.html |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-24T00:00:00
Updated: 2023-12-08T02:28:05.673553
Reserved: 2022-10-24T00:00:00
Link: CVE-2022-43677
JSON object: View
NVD Information
Status : Modified
Published: 2022-10-24T14:15:53.240
Modified: 2023-12-08T03:15:07.130
Link: CVE-2022-43677
JSON object: View
Redhat Information
No data.
CWE