CVE-2026-1682

Name of the Vulnerable Software and Affected Versions Free5GC SMF versions prior to 4.1.1

Description A flaw exists in Free5GC SMF, specifically within the PFCP UDP Endpoint component. The issue resides in the HandlePfcpAssociationReleaseRequest function located in the file internal/pfcp/handler/handler.go. A manipulation can lead to a null pointer dereference, potentially allowing for remote exploitation. An exploit for this issue has been published.

Recommendations Update Free5GC SMF to version 4.1.1 or later. As a temporary workaround, consider disabling the HandlePfcpAssociationReleaseRequest function until a patch is available.