Package impact
Go / github.com/free5gc/amf
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42081 | high | 7.1 | 7.1 | 7d ago | free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against it… | |||
| CVE-2026-42082 | medium | 5.4 | 5.4 | 7d ago | free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AM… | |||
| CVE-2026-41136 | unknown | — | — | 1mo ago | free5GC AMF: Missing default case in Content-Type switch in HTTPUEContextTransfer | |||
| CVE-2026-4531 | unknown | — | — | 2mo ago | Free5GC AMF is vulnerable to DoS through its HandleRegistrationComplete function | |||
| CVE-2023-49391 | unknown | — | — | 3y ago | free5GC AMF denial of service vulnerability |