All intelligence
// vulnerability record
live · NVDCVE-2025-25774
MEDIUMpublished 2025-03-12 17:15 UTC · 1 year ago · modified 2026-06-17 09:01 UTC
6.5
CVSS / 10
// description
An issue was discovered in Open5GS v2.7.2. When a UE switches between two gNBs and sends a handover request at a specific time, it may cause an exception in the AMF's internal state machine, leading to an AMF crash and resulting in a Denial of Service (DoS).
// cvss 3.1 vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
// weaknesses (CWE)
- NVD-CWE-noinfo
- CWE-691