Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Free5Gc — Vulnerabilities & Security Advisories 33

Browse all 33 CVE security advisories affecting Free5Gc. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Free5Gc is an open-source implementation of the 5G core network, primarily utilized by researchers and developers for testing and validating 5G network architectures without proprietary constraints. Its widespread adoption in academic and experimental environments has exposed it to significant security scrutiny, resulting in thirty-three recorded Common Vulnerabilities and Exposures. The most prevalent vulnerability classes include remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and improper access controls within its microservices-based architecture. While no major public incidents involving widespread exploitation have been widely documented, the high volume of CVEs highlights inherent risks in deploying unhardened core infrastructure components. These flaws underscore the necessity for rigorous security auditing and patch management when integrating Free5Gc into any operational or semi-operational network environment, as default configurations frequently lack robust defense-in-depth mechanisms.

Top products by Free5Gc: free5gc SMF udr udm pcf go-upf amf Open5Gc chf nrf ausf
LowCVE-2025-411362026-04-22
[AMF] Missing default case in Content-Type switch in HTTPUEContextTransfer · Advisory · free5gc/free5gc · GitHub
High2026-04-22
fix(pcf): add missing auth middleware to smPolicyGroup and uePolicyGroup · free5gc/pcf@599803b · GitHub
High2026-04-22
[PCF] Memory Leak via CORS Middleware Registration in HTTP Handler Leads to Denial of Service · Advisory · free5gc/free5
MediumCVE-2026-403432026-04-22
UDR fail-open request handling in PolicyDataSubsToNotifyPost may allow unintended subscription creation after input erro
High2026-04-18
UDR nudr-dr influenceData/subs-to-notify leaks SUPI in error response body without authentication · Advisory · free5gc/f
High2026-04-18
UDR improper path validation allows unauthenticated creation and modification of Traffic Influence Subscriptions · Advis
HighCVE-2025-402462026-04-18
UDR improper path validation allows unauthenticated deletion of Traffic Influence Subscriptions · Advisory · free5gc/fre
HighCVE-2025-402472026-04-18
UDR improper path validation allows unauthenticated access to Traffic Influence Subscriptions · Advisory · free5gc/free5
MediumCVE-2025-02492026-04-18
UDR fail-open request handling in PolicyDataSubsToNotifySubsIdPut may allow unintended subscription updates after input
High2026-02-24
[Bugs]SMF crashes on PFCP SessionReportRequest with ReportType.USAR=1 and UsageReport missing URRID · Issue #807 · free5
HighCVE-2026-260252026-02-24
SMF crash (nil pointer dereference) on PFCP SessionReportRequest when ReportType.USAR=1 and UsageReport omits mandatory
HighGHSA-vq85-8f6p-g9q52026-02-24
SMF crash (nil pointer dereference) on PFCP SessionReportRequest when ReportType.DLDR is set but DownlinkDataReport IE i
MediumCVE-2026-276432026-02-24
Improper error handling in NEF with information exposure · Advisory · free5gc/free5gc · GitHub
Medium2026-02-24
[Bugs] UDM incorrectly returns 500 for invalid UE ID containing control characters (%00) in Nudm_UECM GET request (net/u
Low2026-02-24
[Bugs] UDM incorrectly returns 500 for invalid (non-numeric or out-of-range) pduSessionId in Nudm_UECM DELETE request ·
Unknown2026-02-24
Merge pull request #76 from chchen7/fix/uecm-input-check · free5gc/udm@504b144 · GitHub
Medium2026-02-24
[Bugs] NEF incorrectly returns 500 for missing PFD data (UDR 404) in Nnef_PfdManagement GET request (JSON parse error: i
LowGHSA-f3pc-w7jp-4jh22026-02-24
NEF incorrectly returns 500 for missing PFD data (UDR 404) in Nnef_PfdManagement GET request · Advisory · free5gc/free5g
Low2026-02-24
fix: add missing return statements after error responses by solar224 · Pull Request #56 · free5gc/udr · GitHub
CriticalCVE-2025-701212026-02-21
[Bugs] Array Index Out of Bounds Vulnerability in AMF MobileIdentity5GS Processing Causes AMF Crash · Issue #747 · free5

Showing up to 20 recent security advisories. View all →

This page lists every published CVE security advisory associated with Free5Gc. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.