Free5gc Vulnerabilities
Comprehensive security vulnerability database for Free5gc products
3
0
0
3
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-70123 | 7.5 | This vulnerability allows remote attackers to crash the free5GC system by sending a specially crafted request, which puts the system in a confused state. If this happens, it can lead to service interruptions, but the attacker needs to send the malformed request to exploit this flaw. | free5gcfree5gc | Theoretical | 7 days agoFeb 13, 2026 |
| CVE-2025-70122 | 7.5 | This vulnerability allows remote attackers to crash the UPF component of free5GC, causing a denial of service by sending a specially crafted request that tricks the system into trying to use more memory than it can handle. To exploit this, the attacker needs to send a specific type of message that exceeds the expected size, leading to a system failure. | free5gcfree5gc | Theoretical | 7 days agoFeb 13, 2026 |
| CVE-2025-70121 | 7.5 | This vulnerability allows attackers to crash the AMF component of free5GC, causing a denial of service, by sending a specially crafted registration request with a specific mobile identity. The attack requires the attacker to be able to send messages to the system, which could disrupt services for legitimate users. | free5gcfree5gc | Theoretical | 7 days agoFeb 13, 2026 |
About Free5gc Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Free5gc products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.