6 matches found
EUVD-2026-24576
free5GC AMF: Missing default case in Content-Type switch in HTTPUEContextTransfer...
free5GC 安全漏洞
free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 1.4.3 contained security vulnerabilities. These vulnerabilities stemmed from the HTTPUEContextTransfer handler’s lack of a default scenario in the Content-Type switch statement. When a...
CVE-2026-41136 free5GC AMF missing default case in Content-Type switch in HTTPUEContextTransfer
free5GC AMF provides Access & Mobility Management Function AMF for free5GC, an an open-source project for 5th generation 5G mobile core networks. Prior to version 1.4.3, the HTTPUEContextTransfer handler in internal/sbi/apicommunication.go does not include a default case in the Content-Type switc...
CVE-2026-41136
free5GC AMF provides Access & Mobility Management Function AMF for free5GC, an an open-source project for 5th generation 5G mobile core networks. Prior to version 1.4.3, the HTTPUEContextTransfer handler in internal/sbi/apicommunication.go does not include a default case in the Content-Type switc...
CVE-2026-41136
The CVE-2026-41136 issue affects free5GC AMF prior to 1.4.3: the HTTPUEContextTransfer handler in internal/sbi/api_communication.go does not handle an unsupported Content-Type with a default case, causing deserialization to be skipped and an uninitialized UeContextTransferRequest to be processed....
PT-2026-34225
Name of the Vulnerable Software and Affected Versions free5GC AMF versions prior to 1.4.3 Description The HTTPUEContextTransfer handler in internal/sbi/api communication.go lacks a default case in the Content-Type switch statement. If a request is sent with an unsupported Content-Type, the...