CVE-2026-42459 | THREATINT

Description

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the free5GC UDM component fails to validate the supi path parameter in six GET handlers of the nudm-sdm (Subscriber Data Management) service. An unauthenticated attacker can inject control characters into the SUPI parameter, causing UDM to forward a malformed request to UDR and return a 500 Internal Server Error response that exposes internal infrastructure details. This vulnerability is fixed in 4.2.2.

PUBLISHED Reserved 2026-04-27 | Published 2026-05-27 | Updated 2026-05-27 | Assigner GitHub_M

HIGH: 7.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Problem types

CWE-20: Improper Input Validation

CWE-209: Generation of Error Message Containing Sensitive Information

Product status

< 4.2.2

affected

References

github.com/...ree5gc/security/advisories/GHSA-585v-hcgf-jhfr

cve.org (CVE-2026-42459)

nvd.nist.gov (CVE-2026-42459)

Download JSON