CVE-2024-57519

An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the ogs_dbi_auth_info function in lib/dbi/subscription.c file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:open5gs:open5gs:2.7.2:*:*:*:*:*:*:*

History

30 Apr 2025, 16:42

Type Values Removed Values Added
References () https://github.com/f4rs1ght/vuln-research/tree/main/CVE-2024-57519 - () https://github.com/f4rs1ght/vuln-research/tree/main/CVE-2024-57519 - Exploit, Third Party Advisory
References () https://github.com/open5gs/open5gs/commit/08b9e7c55f72649ef25b5407e7e4d938f0f16531 - () https://github.com/open5gs/open5gs/commit/08b9e7c55f72649ef25b5407e7e4d938f0f16531 - Patch, Vendor Advisory
References () https://github.com/open5gs/open5gs/issues/3635 - () https://github.com/open5gs/open5gs/issues/3635 - Exploit, Issue Tracking, Vendor Advisory
CWE NVD-CWE-noinfo
First Time Open5gs open5gs
Open5gs
CPE cpe:2.3:a:open5gs:open5gs:2.7.2:*:*:*:*:*:*:*

25 Mar 2025, 14:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-400

18 Feb 2025, 19:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : unknown
CWE CWE-617

05 Feb 2025, 17:15

Type Values Removed Values Added
Summary
  • (es) Un problema en Open5GS v.2.7.2 permite a un atacante remoto provocar una denegación de servicio a través de la función ogs_dbi_auth_info en el archivo lib/dbi/subscription.c.
CWE CWE-770 CWE-617

29 Jan 2025, 15:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-770

28 Jan 2025, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-01-28 23:15

Updated : 2025-04-30 16:42


NVD link : CVE-2024-57519

Mitre link : CVE-2024-57519

CVE.ORG link : CVE-2024-57519


JSON object : View

Products Affected

open5gs

  • open5gs
CWE
NVD-CWE-noinfo CWE-400

Uncontrolled Resource Consumption