Vulnerabilities > Open5Gs > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-23 | CVE-2021-45462 | Improper Validation of Specified Quantity in Input vulnerability in Open5Gs 2.4.0 In Open5GS 2.4.0, a crafted packet from UE can crash SGW-U/UPF. | 7.5 |
| 2021-03-10 | CVE-2021-28122 | Missing Authentication for Critical Function vulnerability in Open5Gs A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. | 7.5 |
| 2021-01-26 | CVE-2021-25863 | Improper Authentication vulnerability in Open5Gs 2.1.3 Open5GS 2.1.3 listens on 0.0.0.0:3000 and has a default password of 1423 for the admin account. | 8.8 |