CVE-2024-24442
Published: 21 January 2025
Summary
CVE-2024-24442 is a high-severity NULL Pointer Dereference (CWE-476) vulnerability in Cellularsecurity (inferred from references). Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 48.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2024-24442 is a NULL pointer dereference vulnerability in the ngap_app::handle_receive routine of OpenAirInterface CN5G AMF (oai-cn5g-amf) versions up to v2.0.0. This flaw, classified under CWE-476, enables attackers to trigger a Denial of Service (DoS) condition through a specially crafted NGAP message. The vulnerability carries a CVSS v3.1 base score of 7.5, reflecting its high impact on availability with no effects on confidentiality or integrity.
Remote attackers require no privileges or user interaction to exploit this issue over the network with low complexity. By sending a malicious NGAP message to the affected AMF component, an unauthenticated adversary can cause the application to crash, disrupting service availability in 5G core network environments relying on OpenAirInterface.
Mitigation details and patches are referenced in advisories available at http://openairinterface.com and https://cellularsecurity.org/ransacked. Security practitioners should consult these sources for upgrade guidance beyond oai-cn5g-amf v2.0.0.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-21861
Vulnerability details
A NULL pointer dereference in the ngap_app::handle_receive routine of OpenAirInterface CN5G AMF (oai-cn5g-amf) up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted NGAP message.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
NULL dereference in public-facing AMF enables remote unauthenticated DoS via crafted NGAP message, directly mapping to public app exploitation and application/system exploitation for endpoint DoS.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Validates crafted NGAP messages to prevent null pointer dereferences that cause DoS crashes in the AMF handle_receive routine.
Ensures the system handles null pointer errors gracefully without compromising availability during NGAP message processing.
Protects against DoS attacks triggered by malformed NGAP messages exploiting the null dereference vulnerability.