CVE-2023-33096

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Mar 4, 2024
Updated: Apr 12, 2024
CWE ID 617

Summary

CVE-2023-33096 is a newly identified transient Denial of Service (DoS) vulnerability affecting certain 3GPP (Third Generation Partnership Project) DL NAS (Downlink Non-Access Stratum) Transport messages, as outlined in 3GPP 24.501 version 16. An attacker can exploit this issue by sending maliciously crafted messages to the targeted system, leading to a DoS condition while processing the affected transport message. The exact nature of the vulnerability and the potential impact on targeted networks require further investigation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share