Crafted Payload Can Cause Denial of Service to Cellular Network
CVE-2024-24453
5.9MEDIUM
What is CVE-2024-24453?
An invalid memory access issue in Athonet's vEPC MME v11.4.0 when processing the ProtocolIE_ID field of the E-RAB NotToBeModifiedBearerModInd information element may allow attackers to disrupt cellular network operations. By repeatedly establishing connections and transmitting specially crafted payloads, adversaries could induce a Denial of Service, impacting the overall stability and accessibility of the network.
Affected Version(s)
HPE Athonet Core HPE Athonet Core 11.0 <= 11.6