github.com/free5gc/udr (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/free5gc/udr, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (8)
CVE-2026-40245 — CVSS 7.5 (high): Free5GC is an open-source Linux Foundation project for 5th generation (5G) mobile core networks. Versions 4.2.1 and below contain an…
CVE-2026-40246 — CVSS 7.5 (high): free5GC is an open-source implementation of the 5G core network. In versions 1.4.2 and below of the UDR service, the handler for deleting…
CVE-2026-40247 — CVSS 7.5 (high): free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for reading…
CVE-2026-40248 — CVSS 7.5 (high): free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the handler for creating…
CVE-2026-44324 — CVSS 6.5 (medium): free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's UDR nudr-dr DELETE /subscription-data/{ueId}/{ser…
CVE-2026-40343 — CVSS 5.8 (medium): free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. In…
CVE-2026-40249 — CVSS 5.3 (medium): free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the UDR service, the PUT handler for…
CVE-2026-44323 — CVSS 4.3 (medium): free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's UDR nudr-dr DELETE /subscription-data/{ueId}/{ser…