github.com/free5gc/amf
Go5 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting github.com/free5gc/amfpage 1 of 1
- CVE-2023-49391HIGHCVSS 7.5EG 7.52023-12-22
An issue was discovered in free5GC version 3.3.0, allows remote attackers to execute arbitrary code and cause a denial of service (DoS) on AMF component via crafted NGAP message.
- CVE-2026-41136MEDIUMCVSS 5.3EG 5.32026-04-22
free5GC AMF provides Access & Mobility Management Function (AMF) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. Prior to version 1.4.3, the `HTTPUEContextTransfer` handler in `internal/sbi/api_communic…
- CVE-2026-42081MEDIUMCVSS 6.1EG 6.12026-05-27
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored values, as mandated by …
- CVE-2026-42082LOWCVSS 3.7EG 3.72026-05-27
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handove…
- CVE-2026-4531MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.4.3-0.20260306074636-52e9386401ce2026-03-22
A weakness has been identified in Free5GC 4.1.0. Affected is the function HandleRegistrationComplete of the file internal/gmm/handler.go of the component AMF. Executing a manipulation can lead to denial of service. The attack may be perfor…
Check whether github.com/free5gc/amf is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/free5gc/amf CVEs against the assets you own.
Start Free Scan →