CVE-2025-29339

Vulnerability Description

An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability in PFCP session parameter validation. When processing a PFCP Session Establishment Request with PDN Type=0, the UPF fails to handle the invalid value propagated from SMF (or via direct attack), triggering a fatal assertion check and causing a daemon crash.

Vulnerability Details

Published Date

April 22, 2025

Last Modified

June 19, 2025

Source

NVD

CVE-2025-29339

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment