CVE-2026-2525

Published: Feb 16, 2026Modified: Feb 19, 2026

5.5

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: CNA (Secondary)

Description

A vulnerability has been found in Free5GC up to 4.1.0. This affects an unknown function of the component PFCP UDP Endpoint. Such manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Free5gc: Free5gc

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Free5gc Free5gc	Up to 4.1.0

Related CWEs

Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

References (6)

https://github.com/free5gc/free5gc/

Source: cna@vuldb.com

Product

https://github.com/free5gc/free5gc/issues/796

Source: cna@vuldb.com

ExploitIssue TrackingVendor Advisory

https://github.com/free5gc/free5gc/issues/796#issue-3812169865

Source: cna@vuldb.com

ExploitIssue TrackingVendor Advisory

https://vuldb.com/?ctiid.346113

Source: cna@vuldb.com

Permissions RequiredVDB Entry

https://vuldb.com/?id.346113

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://vuldb.com/?submit.739509

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

Timeline

No history available yet.