CVE-2024-24449 | THREATINT

Description

An uninitialized pointer dereference in the NasPdu::NasPdu component of OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted InitialUEMessage message sent to the AMF.

PUBLISHED Reserved 2024-01-25 | Published 2024-11-15 | Updated 2024-11-26 | Assigner mitre

References

openairinterface.org/

cellularsecurity.org/ransacked

cve.org (CVE-2024-24449)

nvd.nist.gov (CVE-2024-24449)

Download JSON