← Voltar para CVEs
CVE-2026-1976
MEDIUM5.3
Descricao
A weakness has been identified in Free5GC up to 4.1.0. Affected is the function SessionDeletionResponse of the component SMF. This manipulation causes null pointer dereference. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. It is suggested to install a patch to address this issue.
Detalhes CVE
Pontuacao CVSS v3.15.3
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado2/6/2026
Ultima modificacao2/9/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
free5gc:free5gc
Fraquezas (CWE)
CWE-404CWE-476CWE-476
Referencias
https://github.com/free5gc/free5gc/(cna@vuldb.com)
https://github.com/free5gc/free5gc/issues/817(cna@vuldb.com)
https://github.com/free5gc/smf/pull/189(cna@vuldb.com)
https://vuldb.com/?ctiid.344498(cna@vuldb.com)
https://vuldb.com/?id.344498(cna@vuldb.com)
https://vuldb.com/?submit.743239(cna@vuldb.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.