Known Vulnerabilities for products from Free5gc
Listed below are 18 of the newest known vulnerabilities associated with the vendor "Free5gc".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41136 json | free5GC AMF provides Access & Mobility Management Function (AMF) for free5GC, an an open-source project for 5th generation (5... | Not Provided | 2026-04-22 | 2026-04-23 |
| CVE-2026-41135 json | free5GC UDR is the Policy Control Function (PCF) for free5GC, an an open-source project for 5th generation (5G) mobile core n... | Not Provided | 2026-04-22 | 2026-04-23 |
| CVE-2026-40343 json | free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generation (5G) mobile core netw... | Not Provided | 2026-04-22 | 2026-04-23 |
| CVE-2026-40249 json | free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the PUT hand... | Not Provided | 2026-04-16 | 2026-04-21 |
| CVE-2026-40248 json | Not Provided | 2026-04-16 | 2026-04-20 | |
| CVE-2026-40247 json | free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler ... | Not Provided | 2026-04-16 | 2026-04-21 |
| CVE-2026-40246 json | free5GC is an open-source implementation of the 5G core network. In versions 1.4.2 and below of the UDR service, the handler ... | Not Provided | 2026-04-16 | 2026-04-21 |
| CVE-2026-40245 json | Free5GC is an open-source Linux Foundation project for 5th generation (5G) mobile core networks. Versions 4.2.1 and below con... | Not Provided | 2026-04-16 | 2026-04-21 |
| CVE-2026-5661 json | Not Provided | 2026-04-06 | 2026-04-06 | |
| CVE-2026-5360 json | A vulnerability has been found in Free5GC 4.2.0. The affected element is an unknown function of the component aper. Such mani... | Not Provided | 2026-04-02 | 2026-04-29 |
| CVE-2023-49391 json | 7.5 - HIGH | 2023-12-22 | 2024-01-03 | |
| CVE-2023-47347 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-11-15 | 2023-11-21 |
| CVE-2023-47346 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-11-13 | 2023-11-20 |
| CVE-2023-47345 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-11-15 | 2023-11-21 |
| CVE-2023-46324 json | pkg/suci/suci.go in free5GC udm before 1.2.0, when Go before 1.19 is used, allows an Invalid Curve Attack because it may comp... | 7.5 - HIGH | 2023-10-23 | 2023-10-30 |
| CVE-2023-4659 json | Cross-Site Request Forgery vulnerability, whose exploitation could allow an attacker to perform different actions on the plat... | 9.8 - CRITICAL | 2023-10-02 | 2023-10-04 |
| CVE-2022-43677 json | In free5GC 3.2.1, a malformed NGAP message can crash the AMF and NGAP decoders via an index-out-of-range panic in aper.GetBit... | 5.5 - MEDIUM | 2022-10-24 | 2023-12-08 |
| CVE-2022-38871 json | In Free5gc v3.0.5, the AMF breaks due to malformed NAS messages. | 7.5 - HIGH | 2022-11-18 | 2022-11-24 |
| CVE-2022-38870 json | Free5gc v3.2.1 is vulnerable to Information disclosure. | 7.5 - HIGH | 2022-10-25 | 2022-10-26 |