You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
title: Unauthorized access to Network Exposure Function (NEF) via token fraud
description: An adversary controlling an (external) Application Function (AF) presents a fraudulent OAuth access token to access Network Exposure Function (NEF) services
severity: High
tags:
- oran
- 5gcore
- generic
detectionMethods: # Mechanisms to detect the threat
mitigationMethods: # Mechanisms to mitigate the threat
securityActions:
securityIntentBinding: # Set of labels, annotations describing workloads who would be impacted by this threat
preDeploymentConsiderations: [ ] # Anything that can be done in CI/CD pipelines that can alleviate this threat