HIGH🇬🇧 English

CVE-2023-42358

CVSS 7.7v3.1pub. 2024-01-03upd. 2025-06-18

An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
  • O Ran Sc Ric Plt E2mgr

    APP
    O-Ran-Sc
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2024-34048CRITICAL9.8PL ✓ten sam produkt

Brak weryfikacji rozmiaru tablicy w O-RAN SC e2mgr — RCE/uszkodzenie pamięci

CVE-2024-34047MEDIUM4.3ten sam produkt

O-RAN RIC I-Release e2mgr lacks array size checks in RicServiceUpdateHandler.

CVE-2023-41627HIGH7.5ten sam vendor

O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validate the source of the routing tables it receives...

CVE-2023-41628HIGH7.5ten sam vendor

An issue in O-RAN Software Community E2 G-Release allows attackers to cause a Denial of Service (DoS) by incor...

CVE-2023-40997HIGH7.5ten sam vendor

Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to ...