CVE-2023-36997

No Score

Description

A malformed Initial Context Setup Request S1AP packet will cause NextEPC to crash due to an invalid read. Note that this is not a null free; this is freeing uninitialized/out of range memory, and it is fundamentally caused by an off-by-one error between two statically-allocated arrays in asn1c.

References

https://cellularsecurity.org/ransacked

Details

Source: Mitre, NVD

Published: 2025-01-24