CVE-2023-49391: 
vulnerability analysis and mitigation

An issue was discovered in free5GC version 3.3.0 that allows remote attackers to execute arbitrary code and cause a denial of service (DoS) on the AMF (Access and Mobility Management Function) component via crafted NGAP (Next Generation Application Protocol) messages. The vulnerability was disclosed on December 22, 2023, and has been assigned a CVSS v3.1 base score of 7.5 HIGH (NVD).

The vulnerability exists in the AMF component's NGAP message handling functionality. When receiving invalid NGAP messages, the AMF crashes due to a runtime error involving an invalid memory address or nil pointer dereference. The issue occurs in the message dispatch functionality, specifically in the handleConnection function of the NGAP service (GitHub Issue).

The vulnerability can lead to a denial of service condition where the AMF component crashes and becomes unable to restart. This affects the core network functionality as the AMF is responsible for handling mobility management and access control in 5G networks. The impact is particularly severe as the AMF cannot recover without manual intervention (GitHub Issue).

At the time of disclosure, no official patch was available. The expected behavior should be to validate NGAP message content and reject malformed messages rather than crashing the service (GitHub Issue).