CVE-2025-69208

Name of the Vulnerable Software and Affected Versions free5GC UDR versions prior to 1.4.1

Description The free5GC UDR, a user data repository for the free5GC 5G mobile core network project, contains an Improper Error Handling issue that can lead to Information Exposure. Deployments utilizing the Nnef PfdManagement service may be affected. The NEF component reveals internal parsing errors to remote clients, potentially aiding attackers in fingerprinting the server software and understanding its logic flows. The vulnerability is due to the component reliably leaking internal parsing errors, such as invalid characters, to remote clients.

Recommendations Update to version 1.4.1 or later.