CNNVD-202512-3406 Information

CNNVD ID

CNNVD-202512-3406

Related CVE

CVE-2025-65568

• CNNVD Published: 2025-12-18

Description (Chinese)

UPF是Aether SD-Core Project开源的一个用户界面。 UPF存在安全漏洞，该漏洞源于处理包含空或截断IPv4地址字段的PFCP会话建立请求时越界读取，可能导致拒绝服务。

Description (English)

UPF is a user interface for Aether SD-Core Projects. There is a security loophole in the UPF, which arises from cross-border access to the PFCP session when processing requests for the creation of an empty or cut-off IPv4 address field, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Aether SD-Core Project

Published

2025-12-18

Last Modified

2026-02-24

References

http://omec-projectupf.com http://upf-epc-pfcpiface.com https://github.com/omec-project/upf/issues/962 https://access.redhat.com/security/cve/cve-2025-65568