AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-24444: Improper file descriptor handling for closed connections in OpenAirInterface CN5G AMF (oai-cn5g-amf) up to v2.0.0 allows

highvulnerability

security

Source: NVD/CVE DatabaseJanuary 21, 2025CVE-2024-24444

Summary

CVE-2024-24444 is a bug in OpenAirInterface CN5G AMF (a telecom network software) up to version 2.0.0 where file descriptors (references to open connections that the system uses) are not properly cleaned up when connections close. An attacker can repeatedly open and close SCTP connections (a network protocol used in telecom) to cause a Denial of Service attack, making the system unavailable.

Vulnerability Details

CVSS Score

7.5(high)

EPSS (30-day exploit probability)

EPSS: 0.4%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-775

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-24444

First tracked: February 15, 2026 at 08:49 PM

Classified by LLM (prompt v3) · confidence: 95%