CVE-2024-34034

Name of the Vulnerable Software and Affected Versions FlexRIC version 2.0.0

Description An issue was discovered that causes FlexRIC to crash during a denial-of-service (DoS) attack. This is triggered by an assertion error when an attacker sends a high number of E42 Subscription Requests to the Near-RT RIC component.

Recommendations For FlexRIC version 2.0.0, as a temporary workaround, consider restricting access to the Near-RT RIC component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.