CVE-2022-43677

CVE-2022-43677

EPSS 0.7%

In free5GC 3.2.1, a malformed NGAP message can crash the AMF and NGAP decoders via an index-out-of-range panic in aper.GetBitString.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/free5gc/free5gc/issues/402 https://www.trendmicro.com/en_us/research/23/j/asn1-vulnerabilities-in-5g-cores.html