CVE-2023-50020 – This vulnerability in open5gs v2.6.6 allows att... (How to Fix)

Q: What is the severity of CVE-2023-50020?

CVE-2023-50020 has a CVSS score of 7.5 (HIGH). This vulnerability in open5gs v2.6.6 allows attackers to crash the AMF (Access and Mobility Management Function) component by exploiting SIGPIPE signals. This affects systems running vulnerable versions of open5gs, potentially causing service disruption in 5G core networks.

📋 TL;DR

This vulnerability in open5gs v2.6.6 allows attackers to crash the AMF (Access and Mobility Management Function) component by exploiting SIGPIPE signals. This affects systems running vulnerable versions of open5gs, potentially causing service disruption in 5G core networks.

💻 Affected Systems

Products:

open5gs

Versions: v2.6.6 and possibly earlier versions

Operating Systems: Linux, Unix-like systems

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects AMF component of open5gs 5G core implementation.

📦 What is this software?

Open5gs by Open5gs

View all CVEs affecting Open5gs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete denial of service for 5G core network, disrupting mobile connectivity for all users served by the affected AMF.

🟠

Likely Case

Service disruption requiring AMF restart, causing temporary connectivity loss for mobile users.

🟢

If Mitigated

Minimal impact with proper monitoring and automated recovery mechanisms in place.

🌐 Internet-Facing: MEDIUM - AMF components may be exposed to network traffic but typically behind firewalls in carrier networks.

🏢 Internal Only: HIGH - Internal network attackers could exploit this to disrupt 5G core services.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

SIGPIPE exploitation typically requires network access to the AMF service.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit 1aba814938e3a1b2eec7014bf6ce132d34622e08

Vendor Advisory: https://github.com/open5gs/open5gs/issues/2734

Restart Required: Yes

Instructions:

1. Update open5gs to latest version or apply commit 1aba814. 2. Recompile and reinstall open5gs. 3. Restart AMF service.

🔧 Temporary Workarounds

SIGPIPE Signal Handling

linux

Configure system to ignore SIGPIPE signals or handle them gracefully

ulimit -c unlimited
trap '' SIGPIPE

🧯 If You Can't Patch

Implement network segmentation to restrict access to AMF service
Deploy redundant AMF instances with load balancing to maintain service during crashes

🔍 How to Verify

Check if Vulnerable:

Check open5gs version and verify if commit 1aba814 is applied

Check Version:

open5gs-amfd --version

Verify Fix Applied:

Verify AMF service remains stable during network stress testing

📡 Detection & Monitoring

Log Indicators:

AMF process crashes
SIGPIPE errors in system logs
Service restart messages

Network Indicators:

Unusual TCP connection patterns to AMF port
Repeated connection attempts

SIEM Query:

process:open5gs-amfd AND (event:crash OR signal:SIGPIPE)

📊 Metadata

CVE ID: CVE-2023-50020

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-400

Published: January 2, 2024

Last Updated: June 18, 2025

🔗 References

https://github.com/open5gs/open5gs/commit/1aba814938e3a1b2eec7014bf6ce132d34622e08 Patch
https://github.com/open5gs/open5gs/issues/2734 Exploit,Issue Tracking,Vendor Advisory
https://github.com/open5gs/open5gs/commit/1aba814938e3a1b2eec7014bf6ce132d34622e08 Patch
https://github.com/open5gs/open5gs/issues/2734 Exploit,Issue Tracking,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-50020, you might also want to check these: