CVE-2023-50020

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 2, 2024

Updated: Jan 11, 2024

CWE ID 400

Summary

CVE-2023-5020 is a newly identified vulnerability affecting open5gs version 2.6.6. This issue allows an attacker to cause a SIGPIPE crash in the AMF (Access and Mobility Management Function) component of the open5gs system. By exploiting this vulnerability, an attacker may succeed in disrupting the normal operation of the network, leading to potential service disruptions or denial-of-service conditions. The exact cause of the crash and the prerequisites for successfully exploiting this vulnerability are under investigation. It is recommended that users of open5gs v2.6.6 upgrade to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database