Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Vulnerability List - Page 81

CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-42459 free5GC: Improper Input Validation and Generation of Error Message Containing Sensitive Information in github.com/free5gc/udm free5gcfree5gc--2026-05-27 15:53:45 Deep Dive
CVE-2026-44315 free5GC: NEF 3gpp-pfd-management API is unauthenticated; forged bearer tokens can create, read, and delete PFD transactions free5gcfree5gc Critical 9.4 2026-05-27 15:52:51 Deep Dive
CVE-2026-44316 free5GC: PCF npcf-smpolicycontrol POST /sm-policies panics on downstream UDR/OpenAPI 404 via nil pointer dereference free5gcfree5gc High 7.5 2026-05-27 15:52:07 Deep Dive
CVE-2026-44317 free5GC: PCF npcf-policyauthorization POST /app-sessions panics on suppFeat=1 with missing AfRoutReq via nil pointer dereference free5gcfree5gc Medium 6.5 2026-05-27 15:50:18 Deep Dive
CVE-2026-48027KEV Compromised Nx Console version 18.95.0 EPSS 0.32nrwlnx-console 超危 -2026-05-27 15:50:01 Deep Dive
CVE-2026-44319 free5GC: NEF crashes via logger.Fatal on PFD notification delivery failure (attacker-controlled notifyUri) free5gcfree5gc High 7.5 2026-05-27 15:49:21 Deep Dive
CVE-2026-44320 free5GC: NEF nnef-callback route group is unauthenticated; forged callback requests are accepted into the processing path free5gcfree5gc High 7.3 2026-05-27 15:48:22 Deep Dive
CVE-2026-44321 free5GC: SMF UPI POST /upi/v1/upNodesLinks exits the SMF process on overlapping UE pools (unauthenticated, reachable Fatalf) free5gcfree5gc High 7.5 2026-05-27 15:47:33 Deep Dive
CVE-2026-44322 free5GC: NEF 3gpp-pfd-management PATCH applications/{appId} panics on UDR access failure due to nil ProblemDetails dereference free5gcfree5gc High 7.5 2026-05-27 15:46:10 Deep Dive
CVE-2026-44323 free5GC: UDR nudr-dr DELETE amf-subscriptions panics on missing subsId when UE state exists (nil pointer dereference) free5gcfree5gc Medium 4.3 2026-05-27 15:45:14 Deep Dive
CVE-2026-44324 free5GC: UDR nudr-dr DELETE amf-subscriptions panics on missing UE state via nil interface type assertion (single authenticated request) free5gcfree5gc Medium 6.5 2026-05-27 15:44:28 Deep Dive
CVE-2026-44325 free5GC: NRF POST /oauth2/token structured-form parser type-confusion panic family (Reflect.Set on incompatible types) free5gcfree5gc High 7.5 2026-05-27 15:43:34 Deep Dive
CVE-2026-44326 free5GC: NEF 3gpp-traffic-influence API is unauthenticated; missing or forged bearer tokens can create, read, patch, and delete subscriptions free5gcfree5gc Critical 9.4 2026-05-27 15:41:39 Deep Dive
CVE-2026-44327 free5GC: NEF nnef-oam route group is unauthenticated; no-token requests reach the OAM handler free5gcfree5gc Critical 10.0 2026-05-27 15:40:42 Deep Dive
CVE-2026-44328 free5GC: SMF UPI DELETE /upi/v1/upNodesLinks/{ref} panics on AN-node deletion via nil UPF dereference; unauthenticated, state-mutating free5gcfree5gc High 8.2 2026-05-27 15:39:44 Deep Dive
CVE-2026-44329 free5GC: SMF UPI management interface lacks auth middleware; unauthenticated topology read/write requests reach handlers free5gcfree5gc Critical 10.0 2026-05-27 15:38:35 Deep Dive
CVE-2026-44330 free5GC: NEF nnef-pfdmanagement API is unauthenticated; forged bearer tokens can read PFD data and create/delete PFD subscriptions free5gcfree5gc Critical 10.0 2026-05-27 15:36:41 Deep Dive
CVE-2026-44318 free5GC: BSF concurrent PUT /nbsf-management/v1/subscriptions/{subId} crashes the BSF process via concurrent map read/write on Subscriptions free5gcfree5gc Medium 6.5 2026-05-27 15:35:42 Deep Dive
CVE-2022-41656 WordPress Account Manager for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability BizswoopAccount Manager for WooCommerce Medium 4.3 2026-05-27 15:30:22 Deep Dive
CVE-2026-45335 WeGIA: Middleware whitelist bypass → open redirect via InternoControle.nextPage LabRedesCefetRJWeGIA Medium 5.4 2026-05-27 15:25:57 Deep Dive