Free5gc Security Vulnerabilities (CVEs)

Track 30 security vulnerabilities affecting Free5gc products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

2 Critical

12 High

16 Medium

Sort by:

🔔 Get Alerts for Free5gc

CVE-2026-27643 5.3

The free5GC UDR component leaks detailed internal parsing error messages to remote clients through the NEF service. This allows attackers to perform s...

Feb 24, 2026

CVE-2026-26025 7.5

A denial-of-service vulnerability in free5GC SMF allows attackers to crash the Session Management Function by sending malformed PFCP SessionReportRequ...

Feb 24, 2026

CVE-2025-69253 5.3

The free5GC User Data Repository versions up to 1.4.1 leak detailed internal parsing error messages through the NEF component. This allows remote atta...

Feb 24, 2026

CVE-2025-69251 5.3

Remote attackers can inject control characters into the ueId parameter of free5gc UDM's Nudm_UECM service, causing URL parsing errors that expose syst...

Feb 24, 2026

CVE-2025-69247 7.5

A heap-based buffer overflow vulnerability in free5GC go-upf versions before 1.2.8 allows remote attackers to cause denial of service by sending speci...

Feb 23, 2026

CVE-2025-69208 5.3

The free5GC UDR component versions prior to 1.4.1 leak internal parsing error details to remote clients through the Nnef_PfdManagement service. This i...

Feb 23, 2026

CVE-2026-2525 5.3

A denial-of-service vulnerability exists in Free5GC's PFCP UDP Endpoint component, allowing remote attackers to crash the service by sending specially...

Feb 16, 2026

CVE-2025-70122 7.5

A heap buffer overflow vulnerability in free5GC's UPF component allows remote attackers to crash the UPF service via specially crafted PFCP Session Mo...

Feb 13, 2026

CVE-2025-70123 7.5

A protocol compliance vulnerability in free5GC's UPF component allows remote attackers to send malformed PFCP Association Setup Requests that violate ...

Feb 13, 2026

CVE-2025-70121 7.5

A remote array index out-of-bounds vulnerability in free5GC's AMF component allows attackers to crash the AMF service via specially crafted 5GS Mobile...

Feb 13, 2026

CVE-2026-1976 5.3

A null pointer dereference vulnerability in Free5GC's SMF component allows remote attackers to cause denial of service by exploiting the SessionDeleti...

Feb 6, 2026

CVE-2026-1975 5.3

A null pointer dereference vulnerability in Free5GC's pfcp_reports.go allows remote attackers to cause denial of service by triggering the identityTri...

Feb 6, 2026

CVE-2026-1973 5.3

A null pointer dereference vulnerability in Free5GC's SMF component allows remote attackers to cause denial of service by exploiting the establishPfcp...

Feb 6, 2026

CVE-2026-1974 5.3

A denial-of-service vulnerability exists in Free5GC's SMF component where the ResolveNodeIdToIp function can be manipulated by remote attackers. This ...

Feb 6, 2026

CVE-2026-1739 5.3

A null pointer dereference vulnerability in Free5GC's Policy Control Function (PCF) allows remote attackers to cause denial of service by crashing the...

Feb 2, 2026

CVE-2026-1684 5.3

A denial-of-service vulnerability exists in Free5GC SMF's PFCP UDP Endpoint component, specifically in the HandleReports function. Attackers can remot...

Jan 30, 2026

CVE-2026-1682 5.3

A null pointer dereference vulnerability in Free5GC SMF's PFCP UDP endpoint allows remote attackers to cause denial of service by sending specially cr...

Jan 30, 2026

CVE-2026-1683 5.3

A denial-of-service vulnerability exists in Free5GC SMF's PFCP handler that allows remote attackers to crash the service by sending specially crafted ...

Jan 30, 2026

CVE-2025-66719 9.1

This vulnerability in Free5gc NRF 1.4.0 allows attackers to bypass scope validation during access token generation by using a crafted targetNF value. ...

Jan 23, 2026

CVE-2025-65561 7.5

A vulnerability in free5GC's LocalNode.Sess function allows attackers to send crafted PFCP Session Modification Requests with malicious Local SEID hea...

Dec 18, 2025

CVE-2025-65562 7.5

CVE-2025-65562 is an unauthenticated denial-of-service vulnerability in free5GC UPF where specially crafted PFCP Session Deletion Requests with large ...

Dec 18, 2025

CVE-2025-60633 6.5

A vulnerability in Free5GC versions 4.0.0 and 4.0.1 allows attackers to cause denial of service through the Nudm_SubscriberDataManagement API. This af...

Nov 24, 2025

CVE-2025-60638 7.5

This vulnerability in Free5GC allows attackers to cause denial of service by sending specially crafted POST requests to the Nnssf_NSSAIAvailability AP...

Nov 24, 2025

CVE-2025-60632 6.5

This vulnerability in Free5GC allows attackers to cause denial of service by sending specially crafted POST requests to the Npcf_BDTPolicyControl API....

Nov 24, 2025

CVE-2025-63679 7.5

A buffer overflow vulnerability in free5gc AMF component allows remote attackers to crash the AMF process by sending a specially crafted UplinkRANConf...

Nov 12, 2025

CVE-2025-29632 5.4

A buffer overflow vulnerability in Free5gc v4.0.0 allows remote attackers to cause denial of service by sending specially crafted messages to the AMF ...

May 29, 2025

CVE-2023-47347 7.5

A buffer overflow vulnerability in free5gc 3.3.0 allows attackers to cause denial of service by sending specially crafted PFCP messages with manipulat...

Nov 15, 2023

CVE-2023-47346 7.5

A buffer overflow vulnerability in free5gc's UPF and SMF components allows attackers to cause denial of service by sending specially crafted PFCP mess...

Nov 13, 2023

CVE-2023-46324 7.5

This vulnerability in free5GC UDM allows an invalid curve attack when using Go versions before 1.19. An attacker can send arbitrary SUCIs (Subscriptio...

Oct 23, 2023

CVE-2023-4659 9.8

This CVE describes a critical Cross-Site Request Forgery vulnerability in Free5GC where attackers can bypass authentication by manipulating tokens or ...

Oct 2, 2023

Why Monitor Free5gc Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 30+ known vulnerabilities affecting Free5gc products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Free5gc packages in under 60 seconds. No agents required - completely agentless scanning that works across Free5gc deployments.

Free vulnerability database: Access detailed information about every Free5gc CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Free5gc CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Free5gc CVEs Free