- Sales: (919) 873-4783
- Service: (919) 536-6559
- Parts: (919) 425-0877
Ensure Open5GS is updated to a version newer than 2.6.4 (such as version 2.7.0 or later), where this assertion logic has been hardened.
Implement network-level filtering to ensure that NGAP traffic is only accepted from trusted, authorized network nodes (GNBs/Access Points). 24429mp4
Typically rated as high, as it impacts the availability of core mobile network functions. Technical Breakdown Ensure Open5GS is updated to a version newer than 2
When the system processes this malicious packet, it hits the failed assertion and shuts down. In a mobile network environment, this results in a Denial of Service , potentially cutting off connectivity for users serviced by that core. Recommendations Technical Breakdown When the system processes this malicious
The vulnerability stems from a "reachable assertion" within the nas_eps_send_emm_to_esm function. In software development, an assertion is a check that the code assumes to be true; if it fails, the program usually crashes immediately to prevent further errors.
An attacker can trigger this crash by sending a specially crafted NGAP packet (Next Generation Application Protocol) to the system.
