What is CVE-2023-47347?

CVE-2023-47347 is a high-severity buffer overflow vulnerability in free5gc 3.3.0. Attackers can exploit this flaw via crafted PFCP messages, leading to denial of service. Immediate action is required to mitigate risks.

What is the severity of CVE-2023-47347?

CVE-2023-47347 has a severity rating of HIGH with a CVSS base score of 7.5.

CVE-2023-47347 | High Vulnerability in free5gc

CVE-2023-47347 is a buffer overflow vulnerability in free5gc version 3.3.0. This vulnerability allows attackers to cause a denial of service by sending crafted PFCP messages that manipulate the Sequence Number to overflow bytes. The CVSS score assigned to this vulnerability is 7.5, categorizing it as high severity. Organizations utilizing free5gc should be particularly aware of this issue as it poses a significant risk to availability.

The vulnerability was published on November 15, 2023, and has since been modified. Given its nature, the risk to organizations includes potential service interruptions due to denial of service attacks. Attackers may leverage this vulnerability through a network attack vector, making it crucial for organizations to address it promptly.

Organizations should prioritize patching immediately to safeguard their systems from potential exploitation. Currently, there are no confirmed public exploits available, but the vulnerability's characteristics indicate a high potential for future exploitation if not addressed.

The urgency for remediation is classified as high due to the impact this vulnerability could have on business operations. Organizations using free5gc 3.3.0 should take immediate steps to evaluate their exposure and implement necessary mitigations.

Vulnerability Details

The official description of this vulnerability states that it exists due to a buffer overflow in free5gc 3.3.0. It allows attackers to send crafted PFCP messages whose Sequence Number is mutated to overflow bytes, leading to a denial of service.

The CVSS score of 7.5 indicates a high severity level, with an impact primarily on availability. The attack complexity is low, and no privileges or user interaction are required for exploitation. The CWE classification associated with this vulnerability is CWE-120.

Technical Analysis

The root cause of this vulnerability lies in improper handling of PFCP messages, which can lead to buffer overflow conditions. Specifically, the attack vector is network-based, allowing attackers to exploit the vulnerability remotely. The attack complexity is low, as no special conditions or high privileges are required.

The vulnerability does not require user interaction, which increases its risk profile. Additionally, while there is no confidentiality or integrity impact, the availability impact is high, leading to potential service disruption.

Risk & Impact Analysis

The real-world deployment risk associated with CVE-2023-47347 is significant due to the potential for denial of service. Organizations relying on free5gc for critical operations could face severe service disruptions, impacting their overall business continuity.

The urgency assessment based on the CVSS score and the potential blast radius indicates that organizations should address this vulnerability in their priority patch cycle. The absence of known exploits does not diminish the risk, as the nature of the vulnerability suggests that it could be leveraged in future attacks.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected version of free5gc is 3.3.0. Organizations should consider upgrading to the latest version to mitigate potential risks.

Mitigation & Remediation

To remediate this vulnerability, organizations should apply the latest patches provided by free5gc. If immediate patching is not feasible, implementing network controls to filter out malformed PFCP messages may provide temporary protection.

For comprehensive security, organizations can enhance their security posture through penetration testing to identify similar weaknesses.

Detection Guidance

Organizations should monitor logs for indicators of malformed PFCP messages. Behavioral anomalies in message handling or service disruptions should also be closely observed.

AppSecure Threat Intelligence Insight

CVE-2023-47347 highlights a critical area for organizations to focus on: the importance of robust input validation and message handling in network protocols. This vulnerability represents a trend where flaws in protocol implementations lead to significant availability issues.

Security teams should take this as a lesson to regularly audit their systems and ensure all components are up to date. For further insights on security practices, organizations can refer to our penetration testing methodology and vulnerability management program guides.

In summary, organizations using free5gc should prioritize addressing CVE-2023-47347 to mitigate risks associated with potential denial of service attacks.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2023-47347: High Vulnerability in free5gc