📦 Free5gc
by Free5gc
🔍 What is Free5gc?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CVE describes a critical Cross-Site Request Forgery vulnerability in Free5GC where attackers can bypass authentication by manipulating tokens or omitting them entirely. Unprivileged remote users ...
A heap buffer overflow vulnerability in free5GC's UPF component allows remote attackers to crash the UPF service via specially crafted PFCP Session Modification Requests. This causes denial of service...
A protocol compliance vulnerability in free5GC's UPF component allows remote attackers to send malformed PFCP Association Setup Requests that violate 3GPP standards. This causes the UPF to enter an in...
A remote array index out-of-bounds vulnerability in free5GC's AMF component allows attackers to crash the AMF service via specially crafted 5GS Mobile Identity in NAS Registration Request messages. Th...
A vulnerability in free5GC's LocalNode.Sess function allows attackers to send crafted PFCP Session Modification Requests with malicious Local SEID headers, causing denial of service or other impacts. ...
CVE-2025-65562 is an unauthenticated denial-of-service vulnerability in free5GC UPF where specially crafted PFCP Session Deletion Requests with large SEID values cause integer underflow and runtime cr...
This vulnerability in Free5GC allows attackers to cause denial of service by sending specially crafted POST requests to the Nnssf_NSSAIAvailability API. It affects Free5GC versions 4.0.0 and 4.0.1, po...
A buffer overflow vulnerability in free5gc AMF component allows remote attackers to crash the AMF process by sending a specially crafted UplinkRANConfigurationTransfer NGAP message. This affects all f...
A buffer overflow vulnerability in free5gc 3.3.0 allows attackers to cause denial of service by sending specially crafted PFCP messages with manipulated sequence numbers. This affects organizations ru...
A buffer overflow vulnerability in free5gc's UPF and SMF components allows attackers to cause denial of service by sending specially crafted PFCP messages. This affects organizations running vulnerabl...
A denial-of-service vulnerability exists in Free5GC's PFCP UDP Endpoint component, allowing remote attackers to crash the service by sending specially crafted packets. This affects all Free5GC deploym...
A null pointer dereference vulnerability in Free5GC's pfcp_reports.go allows remote attackers to cause denial of service by triggering the identityTriggerType function. This affects all Free5GC deploy...
A null pointer dereference vulnerability in Free5GC's SMF component allows remote attackers to cause denial of service by exploiting the SessionDeletionResponse function. This affects Free5GC deployme...
A null pointer dereference vulnerability in Free5GC's SMF component allows remote attackers to cause denial of service by exploiting the establishPfcpSession function. This affects all Free5GC deploym...
A denial-of-service vulnerability exists in Free5GC's SMF component where the ResolveNodeIdToIp function can be manipulated by remote attackers. This affects Free5GC deployments up to version 4.1.0, p...
A denial-of-service vulnerability exists in Free5GC SMF's PFCP UDP Endpoint component, specifically in the HandleReports function. Attackers can remotely trigger this vulnerability to crash the SMF se...
A null pointer dereference vulnerability in Free5GC SMF's PFCP UDP endpoint allows remote attackers to cause denial of service by sending specially crafted PFCP Association Release Request messages. T...
A denial-of-service vulnerability exists in Free5GC SMF's PFCP handler that allows remote attackers to crash the service by sending specially crafted PFCP Session Report Request messages. This affects...
A vulnerability in Free5GC versions 4.0.0 and 4.0.1 allows attackers to cause denial of service through the Nudm_SubscriberDataManagement API. This affects 5G core network deployments using these vuln...
This vulnerability in Free5GC allows attackers to cause denial of service by sending specially crafted POST requests to the Npcf_BDTPolicyControl API. Systems running Free5GC v4.0.0 or v4.0.1 are affe...
A buffer overflow vulnerability in Free5gc v4.0.0 allows remote attackers to cause denial of service by sending specially crafted messages to the AMF component. This affects organizations running vuln...