#PacketCores

Vulnerabilities in Cellular Packet Cores Part IV: Authentication

by

September 18, 2024 at 06:47AM Microsoft Azure Private 5G Core (AP5GC) has two critical vulnerabilities. The first (CVE-2024-20685) can lead to potential service outages, while the second (ZDI-CAN-23960) can disrupt network operations. These exploits underscore systemic weaknesses, particularly the lack of mandatory authentication procedures between base stations and packet-cores, posing potential denial-of-service threats. From the … Read more

Attacks on 5G Infrastructure From User Devices: ASN.1 Vulnerabilities in 5G Cores

by

October 20, 2023 at 05:55AM This article discusses cyber threats related to 5G infrastructure and vulnerabilities in the 5G control plane. Attackers can exploit these vulnerabilities by sending control messages disguised as user traffic, which can disrupt operations and cause damage to industries relying on 5G technology. The article recommends implementing access control, separating control … Read more