Aggregates CVE and security vulnerability intelligence across all o-ran-sc-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk denial of service and related problems; some flaws may lead to vendor impact application crash and vendor impact memory corruption.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-34048 | O-RAN RIC I-Release e2mgr lacks array size checks in E2nodeConfigUpdateNotificationHandler. | [email protected] | 9.8 | 0.28% | 2024-04-30 | 2025-05-27 |
| CVE-2024-34047 | O-RAN RIC I-Release e2mgr lacks array size checks in RicServiceUpdateHandler. | [email protected] | 4.3 | 0.15% | 2024-04-30 | 2025-05-27 |
| CVE-2023-42358 | An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component. | [email protected] | 7.7 | 0.51% | 2024-01-03 | 2025-06-18 |
| CVE-2023-41628 | An issue in O-RAN Software Community E2 G-Release allows attackers to cause a Denial of Service (DoS) by incorrectly initiating the messaging procedure between the E2Node and E2Term components. | [email protected] | 7.5 | 0.24% | 2023-09-01 | 2024-11-21 |
| CVE-2023-41627 | O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validate the source of the routing tables it receives, potentially allowing attackers to send forged routing tables to the device. | [email protected] | 7.5 | 0.21% | 2023-09-01 | 2024-11-21 |
| CVE-2023-40998 | Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via the packet size component. | [email protected] | 7.5 | 0.97% | 2023-08-28 | 2024-11-21 |
| CVE-2023-40997 | Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via a crafted packet. | [email protected] | 7.5 | 0.39% | 2023-08-28 | 2024-11-21 |