An invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes messages in Athonet vEPC MME v11.4.0 allows attackers to cause a Denial of Service (DoS) to the cellular network by repeatedly initiating connections and sending a crafted payload.
References
Link | Resource |
---|---|
http://athonet.com | |
https://cellularsecurity.org/ransacked |
Configurations
No configuration.
History
18 Nov 2024, 17:11
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
15 Nov 2024, 21:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-125 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
15 Nov 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-11-15 20:15
Updated : 2024-11-18 17:11
NVD link : CVE-2024-24457
Mitre link : CVE-2024-24457
CVE.ORG link : CVE-2024-24457
JSON object : View
Products Affected
No product.
CWE
CWE-125
Out-of-bounds Read