CVE-2023-47345

free5gc Buffer Overflow vulnerability in go/github.com/free5gc/free5gc

Identifiers

GHSA-6944-6pmv-6mp2, CVE-2023-47345

Package Slug

go/github.com/free5gc/free5gc

Vulnerability

free5gc Buffer Overflow vulnerability

Description

Buffer Overflow vulnerability in free5gc 3.3.0 allows attackers to cause a denial of service via crafted PFCP message with malformed PFCP Heartbeat message whose Recovery Time Stamp IE length is mutated to zero.

Affected Versions

All versions up to 3.3.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-11-17

source