{"vulnerability": "cve-2024-3403", "sightings": [{"uuid": "be20a2bf-871d-4424-b16f-0fcaf17e874e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34036", "type": "seen", "source": "https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "content": "", "creation_timestamp": "2025-02-25T07:42:55.000000Z"}, {"uuid": "3a1d1ae8-ec71-49c8-ab90-060870219506", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34035", "type": "seen", "source": "https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "content": "", "creation_timestamp": "2025-02-25T07:42:55.000000Z"}, {"uuid": "a5ffc128-9b12-40c6-87dd-a17791fd9ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34034", "type": "seen", "source": "https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "content": "", "creation_timestamp": "2025-02-25T07:42:55.000000Z"}, {"uuid": "435489c9-a904-410a-849b-cb630466d57f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34034", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5379", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34034\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in FlexRIC 2.0.0. It crashes during a Subscription Request denial-of-service (DoS) attack, triggered by an assertion error. An attacker must send a high number of E42 Subscription Requests to the Near-RT RIC component.\n\ud83d\udccf Published: 2025-02-25T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-25T19:56:08.593Z\n\ud83d\udd17 References:\n1. https://gitlab.eurecom.fr/mosaic5g/flexric/-/tags/v2.0.0\n2. https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "creation_timestamp": "2025-02-25T20:23:07.000000Z"}, {"uuid": "7b0005f6-036f-4e6d-a94f-7a1663607da1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34036", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5382", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34036\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in O-RAN Near Realtime RIC I-Release. To exploit this vulnerability, an attacker can disrupt the initial connection between a gNB and the Near RT-RIC by inundating the system with a high volume of subscription requests via an xApp.\n\ud83d\udccf Published: 2025-02-25T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-25T19:53:31.480Z\n\ud83d\udd17 References:\n1. https://jira.o-ran-sc.org/browse/RIC-1057\n2. https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "creation_timestamp": "2025-02-25T20:23:12.000000Z"}, {"uuid": "f63cb54e-3dbc-4d62-a628-61cd9c028dc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-34035", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5381", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-34035\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp.\n\ud83d\udccf Published: 2025-02-25T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-25T19:55:18.178Z\n\ud83d\udd17 References:\n1. https://jira.o-ran-sc.org/browse/RIC-1056\n2. https://gist.github.com/fklement/3a43dbb9fb361dddd8db7703080ade0f", "creation_timestamp": "2025-02-25T20:23:12.000000Z"}]}