CVE-2026-27642 PUBLISHED

free5GC has Improper Input Validation in UDM UEAU Service

Assigner: GitHub_M
Reserved: 20.02.2026 Published: 24.02.2026 Updated: 24.02.2026

free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th generation (5G) mobile core networks. In versions up to and including 1.4.1, remote attackers can inject control characters (e.g., %00) into the supi parameter, triggering internal URL parsing errors (net/url: invalid control character). This exposes system-level error details and can be used for service fingerprinting. All deployments of free5GC using the UDM Nudm_UEAU service may be affected. free5gc/udm pull request 75 contains a fix for the issue. No direct workaround is available at the application level. Applying the official patch is recommended.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U
CVSS Score: 6.6

Product Status

Vendor free5gc
Product udm
Versions
  • Version <= 1.4.1 is affected

References

Problem Types

  • CWE-20: Improper Input Validation CWE