CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-24431

A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet with a zero-length EMM message length.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://cellularsecurity.org/ransacked
https://open5gs.org/

Products affected by CVE-2024-24431

Open5gs » Open5gs » Version: 2.7.0

cpe:2.3:a:open5gs:open5gs:2.7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-24431

Products

Pricing

Contact Us