CVE-2025-66719

Name of the Vulnerable Software and Affected Versions Free5gc NRF version 1.4.0

Description An issue exists in the access-token generation logic of Free5gc. The AccessTokenScopeCheck() function within the file internal/sbi/processor/access token.go bypasses scope validation when a crafted targetNF value is used. This allows an attacker to obtain an access token with any arbitrary scope.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting or carefully validating the targetNF value used in the access token generation process.