| CVE |
Severity |
CVSS |
Risk |
Published |
Description |
Impact |
| CVE-2026-42083 |
high |
8.2 |
8.2 |
14h ago |
Free5GC PCF: Missing authentication middleware in Npcf_SMPolicyControl allows access to SM policy handlers and disclosure of subscriber SUPI |
|
| CVE-2026-44316 |
high |
7.5 |
7.5 |
14h ago |
free5GC's PCF npcf-smpolicycontrol POST /sm-policies panics on downstream UDR/OpenAPI 404 via nil pointer dereference |
|
| CVE-2026-44317 |
medium |
6.5 |
6.5 |
14h ago |
free5GC's PCF npcf-policyauthorization POST /app-sessions panics on suppFeat=1 with missing AfRoutReq via nil pointer dereference |
|