漏洞关键信息 Title: Open5GS SGWC v2.7.6 Denial of Service Description: - SGW-C enters an invalid internal session state due to a malformed CreateSessionResponse from the PGW containing an invalid PDN Address Allocation (PAA). - Causes SGW-C to reach a code path marked as "should not be reached", resulting in a remote denial of service. Credit: - Ziyu Lin, Xiaofeng Wang, Wei Dong (Nanyang Technological University) CVESS3.1 Score: 3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Steps to Reproduce: - Start a new Go project using . - Create a file with specific Go code for modifying the Bearer Request and handling responses. - The code includes various case mappings for different verifications and requests related to S11 and S5C interfaces.