All 4 CVE vulnerabilities found in udr, with AI-generated Chinese analysis, references, and POCs.
Vendor: free5gc
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-40343 | free5GC UDR: Fail-open handling in PolicyDataSubsToNotifyPost allows unintended subscription creation CWE-754 | 5.3AI | MediumAI | 2026-04-21 |
| CVE-2026-27643 | free5GC has improper error handling in NEF with information exposure CWE-209 | 5.3 | - | 2026-02-24 |
| CVE-2025-69253 | free5GC vulnerable to improper error handling in NEF with information exposure CWE-209 | 5.3 | - | 2026-02-24 |
| CVE-2025-69208 | free5GC UDR's NEF incorrectly returns 500 for missing PFD data (UDR 404) in Nnef_PfdManagement GET request CWE-209 | 7.5AI | HighAI | 2026-02-23 |
All 4 known CVE vulnerabilities affecting udr with full Chinese analysis, references, and POCs where available.