Lucene search
K

719 matches found

Vulnrichment
Vulnrichment
added 2026/02/16 1:2 a.m.5 views

CVE-2026-2525 Free5GC PFCP UDP Endpoint denial of service

A vulnerability has been found in Free5GC up to 4.1.0. This affects an unknown function of the component PFCP UDP Endpoint. Such manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS5.2AI score0.00493EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/02/16 1:2 a.m.13 views

CVE-2026-2525

A vulnerability has been found in Free5GC up to 4.1.0. This affects an unknown function of the component PFCP UDP Endpoint. Such manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

6.9CVSS5.1AI score0.00493EPSS
Exploits1References6
NVD
NVD
added 2026/02/13 5:16 p.m.7 views

CVE-2025-70123

An improper input validation and protocol compliance vulnerability in free5GC v4.0.1 allows remote attackers to cause a denial of service. The UPF incorrectly accepts a malformed PFCP Association Setup Request, violating 3GPP TS 29.244. This places the UPF in an inconsistent state where a...

7.5CVSS0.00333EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/13 12:0 a.m.9 views

PT-2026-8007

Name of the Vulnerable Software and Affected Versions free5GC version 4.0.1 Description A heap buffer overflow exists in the UPF component of free5GC version 4.0.1. This flaw allows remote attackers to potentially cause a denial of service by sending a specially crafted PFCP Session Modification...

7.5CVSS5.8AI score0.0034EPSS
Exploits1References5
CVE
CVE
added 2026/02/13 12:0 a.m.14 views

CVE-2025-70123

Summary of CVE-2025-70123 : In free5GC v4.0.1, the UPF fails to validate a malformed PFCP Association Setup Request, violating 3GPP TS 29.244. This leads to an inconsistent UPF state, and a subsequent valid PFCP Session Establishment Request can trigger a cascading failure that disrupts the SMF c...

7.5CVSS5.7AI score0.00333EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/13 12:0 a.m.4 views

CVE-2025-70123

An improper input validation and protocol compliance vulnerability in free5GC v4.0.1 allows remote attackers to cause a denial of service. The UPF incorrectly accepts a malformed PFCP Association Setup Request, violating 3GPP TS 29.244. This places the UPF in an inconsistent state where a...

5.7AI score0.00333EPSS
Exploits1References1
CVE
CVE
added 2026/02/13 12:0 a.m.12 views

CVE-2025-70122

CVE-2025-70122 affects free5GC v4.0.1 UPF. The root cause is a heap buffer overflow in SDFFilterFields.UnmarshalBinary (sdf-filter.go) triggered when a declared length exceeds the actual buffer capacity, causing a runtime panic and UPF crash. Documents indicate remote exploitation over the networ...

7.5CVSS5.9AI score0.0034EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/02/06 2:32 a.m.30 views

CVE-2026-1975 Free5GC pfcp_reports.go identityTriggerType null pointer dereference

A security flaw has been discovered in Free5GC up to 4.1.0. This impacts the function identityTriggerType of the file pfcpreports.go. The manipulation results in null pointer dereference. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks...

6.9CVSS0.00526EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/01/31 3:21 p.m.10 views

CVE-2026-1682

A flaw has been found in Free5GC SMF up to 4.1.0. Affected is the function HandlePfcpAssociationReleaseRequest of the file internal/pfcp/handler/handler.go of the component PFCP UDP Endpoint. Executing a manipulation can lead to null pointer dereference. The attack may be launched remotely. The...

7.5CVSS5.7AI score0.00667EPSS
Exploits1References1
NVD
NVD
added 2026/01/30 3:16 p.m.5 views

CVE-2026-1684

A vulnerability was found in Free5GC SMF up to 4.1.0. Affected by this issue is the function HandleReports of the file /internal/context/pfcpreports.go of the component PFCP UDP Endpoint. The manipulation results in denial of service. The attack can be executed remotely. It is advisable to...

7.5CVSS0.00504EPSS
Exploits1References7
CVE
CVE
added 2026/01/30 2:2 p.m.23 views

CVE-2026-1683

Free5GC SMF up to 4.1.0 is affected by a vulnerability in HandlePfcpSessionReportRequest (internal/pfcp/handler/handler.go) of the PFCP component, enabling remote denial of service. Exploitation has been publicly disclosed. Remediation is to deploy an official patch; multiple sources (NVD/Red Hat...

7.5CVSS5.2AI score0.00639EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2026/01/30 2:2 p.m.26 views

CVE-2026-1682

CVE-2026-1682 affects Free5GC SMF up to version 4.1.0, specifically the PFCP UDP Endpoint’s HandlePfcpAssociationReleaseRequest in internal/pfcp/handler/handler.go. The vulnerability allows remote manipulation that can cause a null pointer dereference. An exploit has been published and may be use...

7.5CVSS5.5AI score0.00667EPSS
Exploits1References8Affected Software1
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.6 views

free5GC security vulnerabilities

Free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of Free5GC 4.1.0 and earlier contain security vulnerabilities. These vulnerabilities stem from improper handling in the HandleReports function within the PFCP UDP Endpoint component, located in the...

7.5CVSS6.1AI score0.00504EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.7 views

PT-2026-5403

Name of the Vulnerable Software and Affected Versions Free5GC SMF versions prior to 4.1.0 Description A flaw exists within the PFCP UDP Endpoint component of Free5GC SMF. Specifically, the HandleReports function within the /internal/context/pfcp reports.go file is susceptible to manipulation,...

7.5CVSS5.4AI score0.00504EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2026/01/16 9:33 p.m.19 views

CVE-2026-21906

An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart. When PowerMode...

8.7CVSS7AI score0.00497EPSS
Exploits0References1
NVD
NVD
added 2026/01/15 9:16 p.m.5 views

CVE-2026-21903

A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a network-based attacker, authenticated with low privileges to cause a Denial-of-Service DoS. Subscribing to telemetry sensors at scale causes all FPC connections to drop, resulting...

7.1CVSS0.0036EPSS
Exploits0References2
OSV
OSV
added 2026/01/15 9:16 p.m.6 views

CVE-2026-21903

A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a network-based attacker, authenticated with low privileges to cause a Denial-of-Service DoS. Subscribing to telemetry sensors at scale causes all FPC connections to drop, resulting...

6.5CVSS5.8AI score0.0036EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/15 8:20 p.m.31 views

CVE-2026-21906 Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash

An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart. When PowerMode...

8.7CVSS0.00497EPSS
Exploits0References3
CVE
CVE
added 2026/01/15 8:18 p.m.14 views

CVE-2026-21903

CVE-2026-21903 is a stack-based buffer overflow in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS. A network-based attacker with low privileges can trigger a Denial-of-Service by subscribing to telemetry sensors at scale, which causes all FPC connections to drop, an FPC crash, an...

7.1CVSS6.5AI score0.0036EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/01/15 8:18 p.m.5 views

EUVD-2026-2692

A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a network-based attacker, authenticated with low privileges to cause a Denial-of-Service DoS. Subscribing to telemetry sensors at scale causes all FPC connections to drop, resulting...

7.1CVSS6.3AI score0.0036EPSS
Exploits0References3
Rows per page
Query Builder