CVE-2026-7183 | aligungr UERANSIM up to 3.2.7 Radio Link Simulation Layer src/lib/rls/rls_pdu.cpp rls::DecodeRlsMessage pduLength uncaught exception

A vulnerability marked as critical has been reported in aligungr UERANSIM up to 3.2.7. The affected element is the function rls::DecodeRlsMessage in the library src/lib/rls/rls_pdu.cpp of the component Radio Link Simulation Layer. The manipulation of the argument pduLength leads to uncaught exception.

This vulnerability is listed as CVE-2026-7183. The attack may be initiated remotely. In addition, an exploit is available.

It is suggested to upgrade the affected component.

This behavior is related to CVE-2024-37877. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

CVE-2026-7183 | aligungr UERANSIM up to 3.2.7 Radio Link Simulation Layer src/lib/rls/rls_pdu.cpp rls::DecodeRlsMessage pduLength uncaught exception

Post correlati

CVE-2025-4758 | PHPGurukul Beauty Parlour Management System 1.1 /contact.php fname sql injection

CVE-2024-38380 | Millbeck Communications Proroute H685t-w 3.2.334 cross site scripting (icsa-24-261-02)

CVE-2025-39711 | Linux Kernel up to 6.6.102/6.12.43/6.16.3 client.c mei_cldev_disable use after free

CVE-2024-25724 | RTI Connext Professional up to 6.1.0 API buffer overflow