CVE-2025-29646

An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of Service via a crafted PFCP SessionEstablishmentRequest packet with restoration indication = true and (teid = 0 or teid >= ogs_pfcp_pdr_teid_pool.size).
Configurations

No configuration.

History

20 Jun 2025, 13:15

Type Values Removed Values Added
Summary
  • (es) Un problema en upf en open5gs 2.7.2 y versiones anteriores permite que un atacante remoto provoque una denegación de servicio a través de un paquete PFCP SessionEstablishmentRequest manipulado con indicación de restauración = verdadero y (teid = 0 o teid >= ogs_pfcp_pdr_teid_pool.size).
References
  • {'url': 'https://gist.github.com/scemodicecosa/581fa485f957239ea5551daa173d0189', 'source': 'cve@mitre.org'}
  • () https://gist.github.com/scmdcs/581fa485f957239ea5551daa173d0189 -

18 Jun 2025, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-06-18 18:15

Updated : 2025-06-23 20:16


NVD link : CVE-2025-29646

Mitre link : CVE-2025-29646

CVE.ORG link : CVE-2025-29646


JSON object : View

Products Affected

No product.

CWE
CWE-20

Improper Input Validation