Vulnerability Details CVE-2024-24421
A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted NAS packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.1%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-24421
-
cpe:2.3:a:linuxfoundation:magma:1.0.0
-
cpe:2.3:a:linuxfoundation:magma:1.8.0