CVE-2023-47347
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2023-47347 is a buffer overflow vulnerability affecting free5gc version 3.3.0. Attackers can exploit this issue by sending crafted PFCP messages with mutated Sequence Numbers, resulting in the overflow of bytes. This vulnerability could potentially lead to a denial of service (DoS) attack. The free5gc software component is used for 5G Core Network functions, making this a significant issue for organizations implementing 5G networks. A patch has been released to address this vulnerability, and it is recommended that all affected organizations upgrade promptly to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- free5GC