CVE-2023-50019
CVSS 3.1 Score 5.9 of 10 (medium)
Details
Summary
CVE-2023-50019 is a vulnerability discovered in open5gs v2.6.6, which affects the InitialUEMessage and Registration request functions. If a specific request is sent at a certain time, it can cause the AMF to crash due to incorrect error handling of the Nudm_UECM_Registration response. This vulnerability has a base severity rating of MEDIUM according to NIST, with an exploitability score of 2.2 out of 10. The potential danger it poses to organizations is considered moderate, as it does not require any privileges or user interaction to exploit and can impact availability. It is recommended to update open5gs to a patched version in order to remediate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions