CVE-2026-37227 in FlexRICinformación

Resumen

por MITRE • 2026-06-01

FlexRIC v2.0.0 contains reachable assert(0) calls in stub message handlers for whitelisted but unimplemented E2AP message types in the near-RT RIC. A remote unauthenticated attacker can send a decodable E2AP PDU of such a type (e.g., E2nodeConfigurationUpdate) to crash the near-RT RIC process (port 36421) via SIGABRT. The message passes whitelist validation but triggers an unconditional assertion in the handler.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

MITRE

Reservar

2026-04-06

Divulgación

2026-06-01

Moderación

aceptado

Artículo

VDB-367688

CPE

listo

CWE

CWE-404 (confirmado)

CVSS

5.3 (VulDB)

EPSS

0.00060

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-37227
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-37227
CVE Details	https://www.cvedetails.com/cve/CVE-2026-37227/

◂ Anterior Visión De Conjunto Próximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!