2 matches found
PT-2026-48680
Name of the Vulnerable Software and Affected Versions free5GC UDR affected versions not specified Description Improper input validation exists in the EE subscription handlers of the free5GC UDR. The system uses a regular expression to validate the ueId variable that includes a catch-all...
CVE-2026-40343
CVE-2026-40343 concerns free5GC UDR (user data repository) in versions up to and including 1.4.2. The issue is a fail‑open handling flaw in the POST handler for /nudr-dr/v2/policy-data/subs-to-notify: after errors reading the request body or deserializing input, the handler does not terminate and...