CVE-2025-5520 – Open5GS AMF/MME Reachable Assertion Vulnerability

June 3, 2025

CVE ID : CVE-2025-5520

Published : June 3, 2025, 6:15 p.m. | 1 hour, 15 minutes ago

Description : A vulnerability was found in Open5GS up to 2.7.3. It has been classified as problematic. Affected is the function gmm_state_authentication/emm_state_authentication of the component AMF/MME. The manipulation leads to reachable assertion. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 9f5d133657850e6167231527514ee1364d37a884. It is recommended to apply a patch to fix this issue. This is a different issue than CVE-2025-1893.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-23102 – Samsung Exynos Double Free Vulnerability

Next Article CVE-2025-5516 – TOTOLINK X2000R Cross-Site Scripting Vulnerability

Highlights

CVE-2025-5661 – “Traffic Offense Reporting System XSS Vulnerability”

June 5, 2025

CVE ID : CVE-2025-5661

Published : June 5, 2025, 2:15 p.m. | 53 minutes ago

Description : A vulnerability, which was classified as problematic, was found in code-projects Traffic Offense Reporting System 1.0. This affects an unknown part of the file /save-settings.php of the component Setting Handler. The manipulation of the argument site_name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2025-5520 – Open5GS AMF/MME Reachable Assertion Vulnerability

⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More

46,000+ Grafana Instances Exposed to Malicious Account Takeover Attacks

CVE-2025-45611 – Hope-Boot Authentication Bypass

Enhance Collection Validation with containsOneItem() Closure Support

Redox OS: Il sistema operativo basato su Rust implementa il supporto a X11 e il porting di GTK3

CVE-2025-46655 – CodiMD AWS S3 SVG XSS Bypass

CVE-2025-5661 – “Traffic Offense Reporting System XSS Vulnerability”

CVE-2025-40571 – Mendix OIDC SSO Privilege Escalation

CVE-2025-1301 – Yordam Informatics Library Automation System Reflected Cross-site Scripting Vulnerability

CVE-2025-46690 – Ververica Platform SQL Connector Unauthorized Access Vulnerability

CVE-2025-5520 – Open5GS AMF/MME Reachable Assertion Vulnerability

Related Posts