CVE-2025-63288

Unknown Unknown - Not Provided

BaseFortify

Publication date: 2025-11-10

Last updated on: 2025-12-11

Assigner: MITRE

Description

In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2025-11-10

Last Modified

2025-12-11

Generated

2026-05-07

AI Q&A

2025-11-10

EPSS Evaluated

2026-05-05

NVD

CVE-2025-63288

Affected Vendors & Products

Vendor	Product	Version / Range
open5gs	open5gs	2.7.6

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-400	The product does not properly control the allocation and maintenance of a limited resource.

Attack-Flow Graph

AI Powered Q&A

Can you explain this vulnerability to me?

This vulnerability in Open5GS 2.7.6 causes the AMF component to crash when it receives an abnormal NGSetupRequest message, leading to a denial of service condition.

How can this vulnerability impact me? :

The impact of this vulnerability is a denial of service, meaning the affected AMF component will crash and become unavailable, potentially disrupting network services relying on Open5GS.

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2025-63288

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Powered Q&A

Ask Our AI Assistant

EPSS Chart