Vulnerabilities > O RAN SC
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-03 | CVE-2023-42358 | Missing Authorization vulnerability in O-Ran-Sc Ric-Plt-E2Mgr An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component. | 7.7 |
| 2023-09-01 | CVE-2023-41627 | Unspecified vulnerability in O-Ran-Sc RIC Message Router 4.9.0 O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validate the source of the routing tables it receives, potentially allowing attackers to send forged routing tables to the device. | 7.5 |
| 2023-09-01 | CVE-2023-41628 | Unspecified vulnerability in O-Ran-Sc E2 Grelease An issue in O-RAN Software Community E2 G-Release allows attackers to cause a Denial of Service (DoS) by incorrectly initiating the messaging procedure between the E2Node and E2Term components. | 7.5 |
| 2023-08-28 | CVE-2023-40997 | Classic Buffer Overflow vulnerability in O-Ran-Sc RIC Message Router 4.9.0 Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via a crafted packet. | 7.5 |
| 2023-08-28 | CVE-2023-40998 | Classic Buffer Overflow vulnerability in O-Ran-Sc RIC Message Router 4.9.0 Buffer Overflow vulnerability in O-RAN Software Community ric-plt-lib-rmr v.4.9.0 allows a remote attacker to cause a denial of service via the packet size component. | 7.5 |