CVE-2024-34475 is a vulnerability identified in Open5GS, an open-source 5G core network implementation, specifically affecting versions prior to 2.7.1. The flaw exists in the Access and Mobility Management Function (AMF) component, within the gmm_state_authentication function of the amf/gmm-sm.c source file. The vulnerability is due to a reachable assertion that triggers when the function encounters a condition where the error code is not equal to OGS_ERROR, causing the assertion to fail and crash the AMF process. This crash results in a denial of service (DoS) by disrupting the AMF's ability to handle NAS (Non-Access Stratum) messages from User Equipment (UE). Since the AMF is critical for managing UE registration, authentication, and mobility in 5G networks, its unavailability can severely impact network operations. The vulnerability can be exploited remotely without authentication or user interaction, as it involves sending crafted NAS messages to the AMF. The CVSS v3.1 base score is 7.5, reflecting high severity due to the ease of exploitation and the significant impact on availability. No confidentiality or integrity impacts are noted. No patches were linked in the provided data, but upgrading to Open5GS version 2.7.1 or later is implied to remediate the issue. No active exploits have been reported in the wild at the time of publication.

The primary impact of CVE-2024-34475 is a denial of service condition affecting the AMF component of Open5GS-based 5G core networks. This disruption can prevent the AMF from processing NAS messages, which are essential for user authentication, registration, and mobility management. As a result, affected networks may experience service outages, dropped connections, or inability to authenticate new or roaming users, leading to degraded network availability and user experience. For mobile network operators and service providers relying on Open5GS, this could translate into significant operational disruptions and potential revenue loss. Since the vulnerability does not affect confidentiality or integrity, data breaches or unauthorized data manipulation are not direct concerns. However, the availability impact on critical 5G infrastructure could have cascading effects on dependent services, including IoT deployments, emergency communications, and enterprise connectivity. The ease of remote exploitation without authentication increases the risk of widespread attacks if the vulnerability is left unpatched.

To mitigate CVE-2024-34475, organizations should immediately upgrade Open5GS to version 2.7.1 or later, where the assertion failure has been addressed. In environments where immediate upgrading is not feasible, network operators should implement strict filtering and validation of NAS messages at the network edge to block malformed or suspicious traffic targeting the AMF. Deploying intrusion detection and prevention systems (IDS/IPS) with signatures tuned to detect anomalous NAS message patterns can help identify and mitigate exploitation attempts. Additionally, isolating the AMF component within a segmented and monitored network zone reduces the attack surface. Continuous monitoring of AMF process health and automated restart mechanisms can minimize downtime in case of crashes. Operators should also maintain up-to-date incident response plans tailored to 5G core network components and conduct regular security assessments to detect similar vulnerabilities proactively.