CVE-2026-5661

MEDIUM 5.3

Free5GC NGSetupRequest denial of service

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used.

CWE	CWE-404
Vendor	n/a
Product	free5gc
Published	Apr 6, 2026
Last Updated	Apr 6, 2026

Stay Ahead of the Next One

Get instant alerts for n/a free5gc

Be the first to know when new medium vulnerabilities affecting n/a free5gc are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

n/a / Free5GC

4.2.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/355485 vuldb.com: https://vuldb.com/vuln/355485/cti vuldb.com: https://vuldb.com/submit/785896 github.com: https://github.com/free5gc/free5gc/issues/832 github.com: https://github.com/free5gc/amf/pull/201 github.com: https://github.com/user-attachments/files/25581199/amfcfg.yaml github.com: https://github.com/free5gc/free5gc/

Credits

🔍 shovon0203 (VulDB User)