Package impact
GO / github.com/free5gc/nef
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-44319 | high | 7.5 | 7.5 | 1d ago | free5GC's NEF crashes via logger.Fatal on PFD notification delivery failure (attacker-controlled notifyUri) | |
| CVE-2026-44322 | high | 7.5 | 7.5 | 1d ago | free5GC's NEF 3gpp-pfd-management PATCH applications/{appId} panics on UDR access failure due to nil ProblemDetails dereference | |
| CVE-2026-44320 | high | 7.3 | 7.3 | 1d ago | free5GC's NEF nnef-callback route group is unauthenticated; forged callback requests are accepted into the processing path |