CVE-2026-37220 in FlexRICinfo

Zusammenfassung

von MITRE • 01.06.2026

FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2_SETUP_REQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path and enforces this via assert(). A remote unauthenticated attacker can crash the near-RT RIC (port 36421) by simply completing an SCTP handshake and immediately disconnecting, without sending any E2AP message.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

MITRE

Reservieren

06.04.2026

Veröffentlichung

01.06.2026

Moderieren

akzeptiert

Eintrag

VDB-367658

CPE

bereit

CWE

CWE-404 (bestätigt)

CVSS

5.3 (VulDB)

EPSS

0.00081

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-37220
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-37220
CVE Details	https://www.cvedetails.com/cve/CVE-2026-37220/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!