Export limit exceeded: 354337 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 354337 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (84 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2023-47345 1 Free5gc 1 Free5gc 2024-11-21 7.5 High
Buffer Overflow vulnerability in free5gc 3.3.0 allows attackers to cause a denial of service via crafted PFCP message with malformed PFCP Heartbeat message whose Recovery Time Stamp IE length is mutated to zero.
CVE-2023-47025 1 Free5gc 1 Free5gc 2024-11-21 5.5 Medium
An issue in Free5gc v.3.3.0 allows a local attacker to cause a denial of service via the free5gc-compose component.
CVE-2023-46324 2 Free5gc, Golang 2 Udm, Go 2024-11-21 7.5 High
pkg/suci/suci.go in free5GC udm before 1.2.0, when Go before 1.19 is used, allows an Invalid Curve Attack because it may compute a shared secret via an uncompressed public key that has not been validated. An attacker can send arbitrary SUCIs to the UDM, which tries to decrypt them via both its private key and the attacker's public key.
CVE-2022-43677 1 Free5gc 1 Free5gc 2024-11-21 5.5 Medium
In free5GC 3.2.1, a malformed NGAP message can crash the AMF and NGAP decoders via an index-out-of-range panic in aper.GetBitString.