CVE-2024-24422

CVE-2024-24422 is a stack-based buffer overflow vulnerability (CWE-787) in the Linux Foundation's Magma project, affecting versions up to and including 1.8.0. The flaw resides in the decode_protocol_configuration_options function within the file /3gpp/3gpp_24.008_sm_ies.c. It enables attackers to trigger a denial of service (DoS) condition by sending a specially crafted Non-Access Stratum (NAS) packet. The vulnerability has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity due to its potential for significant availability disruption.

Any unauthenticated attacker with network access to a vulnerable Magma deployment can exploit this issue, as it requires no privileges or user interaction and has low attack complexity. By transmitting a malicious NAS packet, the attacker causes a stack overflow, leading to application crashes or service unavailability, effectively denying service to legitimate users of the affected cellular network infrastructure.

The vulnerability is fixed in Magma version 1.9 via commit 08472ba98b8321f802e95f5622fa90fec2dea486. Security practitioners should update to this version or later and review the advisory at https://cellularsecurity.org/ransacked for additional details on mitigation and verification steps.