CVE-2026-44328
free5GC · free5GC Core Network
A security vulnerability has been identified in the free5GC open-source 5G core network implementation. Technical details regarding the flaw are currently limited.
Executive summary
A critical vulnerability within the free5GC core network implementation could allow unauthorized access or disruption of 5G infrastructure services.
Vulnerability
The vulnerability details are currently sparse; however, given the context of core network software, the potential for impact on network signaling or control plane integrity is high. Authentication requirements remain unknown at this time.
Business impact
An 8.2 CVSS score indicates a High risk of service disruption or unauthorized control over the network core. Compromise of free5GC could lead to significant telecommunications service outages, unauthorized interception of traffic, or complete loss of control over the 5G network environment.
Remediation
Immediate Action: Verify the version of free5GC in use and apply security patches immediately upon availability from the official project repository.
Proactive Monitoring: Monitor network core signaling logs and management interfaces for unauthorized access or irregular traffic patterns.
Compensating Controls: Implement strict network segmentation and firewall rules to isolate the 5G core components from untrusted network segments.
Exploitation status
Public Exploit Available: false
Analyst recommendation
Security teams managing free5GC deployments must prioritize this vulnerability. It is essential to monitor the official project security advisories and apply all recommended updates immediately to maintain the integrity and availability of the 5G core network.