top of page
perceptive_background_267k.jpg

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-oam route group without inbound OAuth2/bearer-tok…

Published:

26 May 2026 at 22:00:00

Alert date:

27 May 2026 at 18:07:10

Source:

nvd.nist.gov

Click to open the original link from this advisory

Mobile & IoT, Network Infrastructure, Critical Infrastructure

CVE-2026-44327 affects free5GC, an open-source 5G core network implementation. Prior to version 4.2.2, the Network Exposure Function (NEF) component mounts the nnef-oam route group without proper OAuth2/bearer-token authorization. This allows network attackers who can reach the NEF on the Service Based Interface (SBI) to access OAM routes without any authorization headers. The vulnerability affects the entire OAM route group, meaning future operations added to this group would inherit the missing authentication boundary by default. While the current OAM handler is just a stub returning null, this represents a significant structural security defect. The issue has been resolved in version 4.2.2.

Technical details

Mitigation steps:

Affected products:

free5GC

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-44327
https://github.com/free5gc/free5gc/issues/861
https://github.com/free5gc/free5gc/security/advisories/GHSA-cmpj-2x3g-m7g3
https://github.com/free5gc/nef/pull/23

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page