Package impact
GO / github.com/free5gc/pcf
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-42083 | high | 8.2 | 8.2 | 18h ago | Free5GC PCF: Missing authentication middleware in Npcf_SMPolicyControl allows access to SM policy handlers and disclosure of subscriber SUPI | |
| CVE-2026-44316 | high | 7.5 | 7.5 | 18h ago | free5GC's PCF npcf-smpolicycontrol POST /sm-policies panics on downstream UDR/OpenAPI 404 via nil pointer dereference | |
| CVE-2026-44317 | medium | 6.5 | 6.5 | 18h ago | free5GC's PCF npcf-policyauthorization POST /app-sessions panics on suppFeat=1 with missing AfRoutReq via nil pointer dereference |