Denial of Service Vulnerability in Athonet vEPC MME
CVE-2024-24454
5.9MEDIUM
What is CVE-2024-24454?
Athonet vEPC MME v11.4.0 is susceptible to a vulnerability that allows attackers to exploit an invalid memory access when processing ProtocolIE_ID fields in E-RAB Modify Request messages. This flaw can be leveraged to create a Denial of Service condition in cellular networks, where attackers can repeatedly initiate connections with carefully crafted payloads, potentially disrupting service and availability.
Affected Version(s)
HPE Athonet Core HPE Athonet Core 11.0 <= 11.6