Description

OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protocol messages which allows an attacker with network-adjacent access to the AMF to carry out denial of service. When a procedure code/presence field tuple is received that is unsupported, OAI indexes into a null function pointer and subsequently dereferences it.

INFO

Published Date :

2025-01-21T00:00:00.000Z

Last Modified :

2025-03-18T20:19:58.927Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-24445 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-24445.

URL Resource
http://openairinterface.com cve-icon cve-icon
https://cellularsecurity.org/ransacked cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact