CVE-2023-37008

MEDIUM

Open5gs < 2.6.4 - Reachable Assertion

Title source: rule

Description

Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of the S1AP handler. This buffer overflow causes type confusion in decoded fields, leading to invalid parsing and freeing of memory. An attacker may use this to crash an MME or potentially execute code in certain circumstances.

References (1)

[Exploit, Technical Description, Third Party Advisory] https://cellularsecurity.org/ransacked

Scores

CVSS v3 5.3

EPSS 0.0009

EPSS Percentile 25.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-617

Status published

Products (1)

open5gs/open5gs < 2.6.4

Published Jan 22, 2025

Tracked Since Feb 18, 2026