CVE-2026-41136

UNKNOWN 0.0

free5GC AMF missing default case in Content-Type switch in HTTPUEContextTransfer

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

free5GC AMF provides Access & Mobility Management Function (AMF) for free5GC, an an open-source project for 5th generation (5G) mobile core networks. Prior to version 1.4.3, the `HTTPUEContextTransfer` handler in `internal/sbi/api_communication.go` does not include a `default` case in the `Content-Type` switch statement. When a request arrives with an unsupported `Content-Type`, the deserialization step is silently skipped, `err` remains `nil`, and the processor is invoked with a completely uninitialized `UeContextTransferRequest` object. Version 1.4.3 contains a fix.

CWE	CWE-440
Vendor	free5gc
Product	amf
Published	Apr 21, 2026

Stay Ahead of the Next One

Get instant alerts for free5gc amf

Be the first to know when new unknown vulnerabilities affecting free5gc amf are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

free5gc / amf

< 1.4.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/free5gc/free5gc/security/advisories/GHSA-r99v-75p9-xqm5 github.com: https://github.com/free5gc/amf/releases/tag/v1.4.3