Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34 matches found

RedhatCVE
RedhatCVEadded last week5 views

CVE-2026-42082

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command,...

5.4CVSS5.8AI score0.00042EPSS
Exploits1References1
EUVD
EUVDadded 2026/05/27 3:59 p.m.4 views

EUVD-2026-32556

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command,...

3.7CVSS5.8AI score0.00042EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/05/27 3:59 p.m.2 views

CVE-2026-42082 free5GC: Missing Concurrent NAS SMC Validation During NGAP Handover

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command,...

3.7CVSS5.8AI score0.00042EPSS
Exploits1References1
Snyk
Snykadded 2026/05/23 1:44 p.m.4 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow in the PathSwitchRequest process. An attacker can cause memory corruption by sending specially crafted requests remotely to the affected component. Remediation Upgrade github.com/omec-project/amf/nas/nassecurity to versi...

6.5CVSS6.6AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/23 1:44 p.m.2 views

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds in the PDUSessionResourceModifyIndication function of the file handler.go. An attacker can cause memory corruption by sending specially crafted requests to the affected process. Remediation Upgrade...

6.5CVSS6.6AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/23 1:42 p.m.5 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow in the NGSetupRequest process. An attacker can cause memory corruption and potentially compromise confidentiality, integrity, and availability by sending specially crafted requests remotely. Remediation Upgrade...

6.5CVSS6.6AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/18 5:31 a.m.2 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the UERadioCapabilityCheckResponse function in the dispatcher.go file. An attacker can cause a denial of service by sending specially crafted remote requests that trigger a null pointer dereference...

5.3CVSS5.8AI score0.00017EPSS
Exploits0References2
Snyk
Snykadded 2026/05/18 3:47 a.m.2 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the file ngap/handler.go of the component NGAP Message Handler. This manipulation causes null pointer dereference. Remote exploitation of the attack is possible. The exploit has been made available to the...

5.3CVSS5.4AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/18 3:47 a.m.2 views

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds via an unknown function of the file ngap/dispatcher.go of the component NGAP Message Handler. The manipulation leads to memory corruption. The attack may be initiated remotely. The exploit is publicly available and might b...

5.3CVSS5.5AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/18 3:45 a.m.2 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the function RANConfiguration of the file ngap/handler.go. The manipulation results in null pointer dereference. The attack may be launched remotely. The exploit has been released to the public and may be us...

5.3CVSS5.5AI score0.00052EPSS
Exploits0References2
OSV
OSVadded 2026/05/07 1:56 a.m.1 views

GHSA-VRRX-58H3-PRMH Free5GC AMF has Missing Concurrent NAS SMC Validation During NGAP Handover

Summary The AMF in Free5GC v4.2.1 does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command, and vice versa. This can lead to mismatches between NAS and AS...

3.7CVSS5.9AI score0.00042EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2026/05/07 1:56 a.m.4 views

Free5GC AMF has Missing Concurrent NAS SMC Validation During NGAP Handover

Summary The AMF in Free5GC v4.2.1 does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command, and vice versa. This can lead to mismatches between NAS and AS...

5.4CVSS5.9AI score0.00042EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/07 12:0 a.m.5 views

PT-2026-38367

Name of the Vulnerable Software and Affected Versions free5GC versions prior to 4.2.2 Description The Access and Mobility Management Function AMF in free5GC fails to enforce concurrent security procedure rules. Specifically, the AMF does not verify if an N2 handover procedure is ongoing before...

5.4CVSS5.9AI score0.00042EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-20685

Malware in sbrugna...

8.8CVSS8.4AI score0.00198EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2015-8918

Malware in sbrugna...

10CVSS9.5AI score0.00253EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2018-20684

Malware in sbrugna...

4.7CVSS5.3AI score0.00301EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-2435

Malware in sbrugna...

8.8CVSS8.8AI score0.007EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2018-1522

Malware in sbrugna...

9.8CVSS9.5AI score0.02986EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-6635

Malware in sbrugna...

9.8CVSS9.5AI score0.00543EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-20683

Malware in sbrugna...

5.9CVSS6.3AI score0.00195EPSS
Exploits0References2
Rows per page
Query Builder