O-RAN
Products
10- 3 CVEs
- 3 CVEs
- 2 CVEs
- 2 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
15| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-57446 | Hig | 0.49 | 7.5 | 0.00 | Sep 25, 2025 | An issue in O-RAN Near Realtime RIC ric-plt-submgr in the J-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the Subscription Manager API component. | ||
| CVE-2024-34046 | Hig | 0.49 | 7.5 | 0.01 | Apr 30, 2024 | The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for message.peerInfo->sctpParams->e2tCounters[IN_SUCC][MSG_COUNTER][ProcedureCode_id_RICsubscription]->Increment(). | ||
| CVE-2024-34045 | Hig | 0.49 | 7.5 | 0.01 | Apr 30, 2024 | The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for message.peerInfo->counters[IN_INITI][MSG_COUNTER][ProcedureCode_id_E2setup]->Increment(). | ||
| CVE-2024-34035 | Med | 0.37 | 5.7 | 0.00 | Feb 25, 2025 | An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp. | ||
| CVE-2024-34473 | Med | 0.34 | 5.3 | 0.00 | May 4, 2024 | An issue was discovered in appmgr in O-RAN Near-RT RIC I-Release. An attacker could register an unintended RMR message type during xApp registration to disrupt other service components. | ||
| CVE-2024-34044 | Med | 0.34 | 5.3 | 0.00 | Apr 30, 2024 | The O-RAN E2T I-Release buildPrometheusList function can have a NULL pointer dereference because peerInfo can be NULL. | ||
| CVE-2024-34036 | Med | 0.28 | 4.3 | 0.00 | Feb 25, 2025 | An issue was discovered in O-RAN Near Realtime RIC I-Release. To exploit this vulnerability, an attacker can disrupt the initial connection between a gNB and the Near RT-RIC by inundating the system with a high volume of subscription requests via an xApp. | ||
| CVE-2024-34043 | 0.00 | — | 0.00 | Apr 29, 2024 | O-RAN RICAPP kpimon-go I-Release has a segmentation violation via a certain E2AP-PDU message. | |||
| CVE-2024-34047 | 0.00 | — | 0.00 | Apr 29, 2024 | O-RAN RIC I-Release e2mgr lacks array size checks in RicServiceUpdateHandler. | |||
| CVE-2024-34048 | 0.00 | — | 0.01 | Apr 29, 2024 | O-RAN RIC I-Release e2mgr lacks array size checks in E2nodeConfigUpdateNotificationHandler. | |||
| CVE-2023-42358 | 0.00 | — | 0.01 | Jan 3, 2024 | An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component. | |||
| CVE-2023-41627 | 0.00 | — | 0.01 | Sep 1, 2023 | O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validate the source of the routing tables it receives, potentially allowing attackers to send forged routing tables to the device. | |||
| CVE-2023-41628 | 0.00 | — | 0.02 | Sep 1, 2023 | An issue in O-RAN Software Community E2 G-Release allows attackers to cause a Denial of Service (DoS) by incorrectly initiating the messaging procedure between the E2Node and E2Term components. | |||
| CVE-2023-40997 | 0.00 | — | 0.02 | Aug 28, 2023 | Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via a crafted packet. | |||
| CVE-2023-40998 | 0.00 | — | 0.02 | Aug 28, 2023 | Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via the packet size component. |
- risk 0.49cvss 7.5epss 0.00
An issue in O-RAN Near Realtime RIC ric-plt-submgr in the J-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the Subscription Manager API component.
- risk 0.49cvss 7.5epss 0.01
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for message.peerInfo->sctpParams->e2tCounters[IN_SUCC][MSG_COUNTER][ProcedureCode_id_RICsubscription]->Increment().
- risk 0.49cvss 7.5epss 0.01
The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for message.peerInfo->counters[IN_INITI][MSG_COUNTER][ProcedureCode_id_E2setup]->Increment().
- risk 0.37cvss 5.7epss 0.00
An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp.
- risk 0.34cvss 5.3epss 0.00
An issue was discovered in appmgr in O-RAN Near-RT RIC I-Release. An attacker could register an unintended RMR message type during xApp registration to disrupt other service components.
- risk 0.34cvss 5.3epss 0.00
The O-RAN E2T I-Release buildPrometheusList function can have a NULL pointer dereference because peerInfo can be NULL.
- risk 0.28cvss 4.3epss 0.00
An issue was discovered in O-RAN Near Realtime RIC I-Release. To exploit this vulnerability, an attacker can disrupt the initial connection between a gNB and the Near RT-RIC by inundating the system with a high volume of subscription requests via an xApp.
- CVE-2024-34043Apr 29, 2024risk 0.00cvss —epss 0.00
O-RAN RICAPP kpimon-go I-Release has a segmentation violation via a certain E2AP-PDU message.
- CVE-2024-34047Apr 29, 2024risk 0.00cvss —epss 0.00
O-RAN RIC I-Release e2mgr lacks array size checks in RicServiceUpdateHandler.
- CVE-2024-34048Apr 29, 2024risk 0.00cvss —epss 0.01
O-RAN RIC I-Release e2mgr lacks array size checks in E2nodeConfigUpdateNotificationHandler.
- CVE-2023-42358Jan 3, 2024risk 0.00cvss —epss 0.01
An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component.
- CVE-2023-41627Sep 1, 2023risk 0.00cvss —epss 0.01
O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validate the source of the routing tables it receives, potentially allowing attackers to send forged routing tables to the device.
- CVE-2023-41628Sep 1, 2023risk 0.00cvss —epss 0.02
An issue in O-RAN Software Community E2 G-Release allows attackers to cause a Denial of Service (DoS) by incorrectly initiating the messaging procedure between the E2Node and E2Term components.
- CVE-2023-40997Aug 28, 2023risk 0.00cvss —epss 0.02
Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via a crafted packet.
- CVE-2023-40998Aug 28, 2023risk 0.00cvss —epss 0.02
Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via the packet size component.