24429mp4

Monitor system logs for unexpected crashes related to the nas_eps_send_emm_to_esm function to identify potential exploitation attempts. CVE-2024-24429 Detail - NVD

When the system processes this malicious packet, it hits the failed assertion and shuts down. In a mobile network environment, this results in a Denial of Service , potentially cutting off connectivity for users serviced by that core. Recommendations 24429mp4

An attacker can trigger this crash by sending a specially crafted NGAP packet (Next Generation Application Protocol) to the system. Monitor system logs for unexpected crashes related to

The vulnerability stems from a "reachable assertion" within the nas_eps_send_emm_to_esm function. In software development, an assertion is a check that the code assumes to be true; if it fails, the program usually crashes immediately to prevent further errors. Recommendations An attacker can trigger this crash by

Implement network-level filtering to ensure that NGAP traffic is only accepted from trusted, authorized network nodes (GNBs/Access Points).

Typically rated as high, as it impacts the availability of core mobile network functions. Technical Breakdown

Open5GS versions up to and including 2.6.4