CVE-2026-40343

UNKNOWN 0.0

free5GC UDR: Fail-open handling in PolicyDataSubsToNotifyPost allows unintended subscription creation

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

free5GC UDR is the user data repository (UDR) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. In versions up to and including 1.4.2, a fail-open request handling flaw in the UDR service causes the `/nudr-dr/v2/policy-data/subs-to-notify` POST handler to continue processing requests even after request body retrieval or deserialization errors. This may allow unintended creation of Policy Data notification subscriptions with invalid, empty, or partially processed input, depending on downstream processor behavior. As of time of publication, a patched version is not available.

CWE	CWE-754
Vendor	free5gc
Product	udr
Published	Apr 21, 2026

Stay Ahead of the Next One

Get instant alerts for free5gc udr

Be the first to know when new unknown vulnerabilities affecting free5gc udr are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

free5gc / udr

<= 1.4.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/free5gc/free5gc/security/advisories/GHSA-jwch-w7wh-gqjm