Cyber Resilience

CVE-2026-37233

HighPublic PoC

Published: 01 June 2026

Published
01 June 2026
Modified
03 June 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0040 31.3th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-37233 is a high-severity Reachable Assertion (CWE-617) vulnerability in Mosaic5G Flexric. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 31.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

EU & UK References

No EU or UK CSIRT advisories indexed for this CVE.

Vulnerability details

FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m0->xapp_id) instead of the other argument (m1->xapp_id), effectively ignoring the xApp identity dimension. A malicious xApp connected to…

more

the iApp (port 36422) can delete any other xApp's subscriptions by sending an E42_RIC_SUBSCRIPTION_DELETE_REQUEST with a matching ric_gen_id. This breaks multi-tenant isolation in any deployment with multiple xApps sharing the same RIC.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Authorization bypass in xApp isolation directly enables unauthorized cross-tenant actions equivalent to privilege escalation via software vulnerability exploitation.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-37229Same product: Mosaic5G Flexric
CVE-2026-37228Same product: Mosaic5G Flexric
CVE-2026-37235Same product: Mosaic5G Flexric
CVE-2026-37231Same product: Mosaic5G Flexric
CVE-2026-37226Same product: Mosaic5G Flexric
CVE-2026-37230Same product: Mosaic5G Flexric
CVE-2026-37234Same product: Mosaic5G Flexric
CVE-2026-31398Shared CWE-617
CVE-2024-24427Shared CWE-617
CVE-2026-37225Shared CWE-617

Affected Assets

mosaic5g
flexric
2.0.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References