AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-24445: OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protoc

mediumvulnerability

security

Source: NVD/CVE DatabaseJanuary 21, 2025CVE-2024-24445

Summary

OpenAirInterface CN5G AMF (a software component that handles mobile network connections) version 2.0.0 and earlier has a null dereference vulnerability (a crash caused by trying to use a pointer that points to nothing) in how it processes unsupported NGAP protocol messages (communication formats in 5G networks). An attacker with network access near the AMF can exploit this to cause a denial of service (making the service unavailable to legitimate users).

Vulnerability Details

CVSS Score

6.5(medium)

EPSS (30-day exploit probability)

EPSS: 0.2%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-476

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-24445

First tracked: February 15, 2026 at 08:49 PM

Classified by LLM (prompt v3) · confidence: 95%