cvedb.io
CVE-2026-37231
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2026-06-01T19:16:33.517 · Last modified 2026-06-17T10:41:28.667

Summary

FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate xapp_ids. The iApp (port 36422) crashes when attempting to register a duplicate ID in its internal data structure. A remote attacker can trigger this by repeatedly connecting and requesting new xApp registrations.

Affected products

mosaic5g — flexric

Does this affect you?

Add your gear to cvedb and we'll alert you only when mosaic5g ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.