Vulnerability in Open5gs
CVE-2022-39063
When Open5GS UPF receives a PFCP Session Establishment Request, it stores related values for building the PFCP Session Establishment Response. Once UPF receives a request, it gets the f_teid_len from incoming message, and then uses it to c…
EPSS: 0.006 (70.6th percentile) — read the EPSS interpretation.
Affected products
- Open5gs — versions <2.4.9
Weakness classification (CWE)
References
- www.synopsys.com/blogs/software-security/cyrc-advisory-open5gs/ (x_refsource_MISC)