Unrated severityOSV Advisory· Published Jan 30, 2026· Updated Feb 23, 2026
Free5GC SMF PFCP handler.go HandlePfcpSessionReportRequest denial of service
CVE-2026-1683
Description
A vulnerability has been found in Free5GC SMF up to 4.1.0. Affected by this vulnerability is the function HandlePfcpSessionReportRequest of the file internal/pfcp/handler/handler.go of the component PFCP. The manipulation leads to denial of service. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. To fix this issue, it is recommended to deploy a patch.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- github.com/free5gc/smf/pull/188mitreissue-trackingpatch
- github.com/free5gc/free5gc/issues/804mitreexploitissue-tracking
- vuldb.commitrethird-party-advisory
- vuldb.commitrethird-party-advisory
- github.com/free5gc/free5gc/issues/804mitreissue-tracking
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.