| CVE-2026-42083 |
high |
8.2 |
8.2 |
|
|
|
7d ago |
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, PCF Npcf_SMPolicyControl missing authentication middleware allows unauthenticated access to SM policy handlers and dis… |
| CVE-2026-44316 |
high |
7.5 |
7.5 |
|
|
|
7d ago |
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's PCF POST /npcf-smpolicycontrol/v1/sm-policies handler (HandleCreateSmPolicyRequest) panics with a nil-pointe… |
| CVE-2026-44317 |
medium |
6.5 |
6.5 |
|
|
|
7d ago |
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's PCF POST /npcf-policyauthorization/v1/app-sessions handler panics on a single authenticated request whose as… |
| CVE-2026-41135 |
unknown |
— |
— |
|
|
|
1mo ago |
free5GC PCF: Memory Leak via CORS Middleware Registration in HTTP Handler Leads to Denial of Service |
| CVE-2025-60632 |
unknown |
— |
— |
|
|
|
6mo ago |
Free5GC is vulnerable to DoS through its Npcf_BDTPolicyControl POST API in github.com/free5gc/pcf |
