top of page
perceptive_background_267k.jpg

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's PCF POST /npcf-smpolicycontrol/v1/sm-policies handler (HandleCreateSm…

Published:

26 May 2026 at 22:00:00

Alert date:

27 May 2026 at 20:13:41

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

CVE-2026-44316 affects free5GC, an open-source 5G core network implementation. Prior to version 4.2.2, the PCF POST handler for sm-policies panics with a nil-pointer dereference when downstream UDR lookups return 404 errors. The vulnerability allows attackers to cause HTTP 500 responses instead of proper 4xx codes through crafted POST requests. In version 4.2.1, the endpoint is also accessible without authorization headers due to missing authentication middleware. The issue is triggered by POST requests with input causing UDR lookup failures, such as unknown DNN values. The vulnerability has been fixed in version 4.2.2.

Technical details

Mitigation steps:

Affected products:

free5GC

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-44316
https://github.com/free5gc/free5gc/issues/803
https://github.com/free5gc/free5gc/security/advisories/GHSA-wr8j-6chw-gm6p
https://github.com/free5gc/pcf/commit/df535f5524314620715e842baf9723efbeb481a7
https://github.com/free5gc/pcf/pull/62

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page