Heap-based Buffer Overflow Vulnerability in free5GC User Plane Function
CVE-2025-69247

2.7LOW

Key Information:

Vendor

Free5gc

Status
Go-upf
Vendor
CVE Published:
23 February 2026

What is CVE-2025-69247?

The go-upf component of the free5GC project is vulnerable to a heap-based buffer overflow, impacting its User Plane Function (UPF) implementation within 5G networks. When an attacker sends a malicious PFCP Session Modification Request that contains an improper length in the SDF filter field, it can cause a buffer overflow scenario. This vulnerability may lead to a Denial of Service (DoS), disrupting the operation of the UPF and potentially affecting other network elements such as the Session Management Function (SMF). Users of free5GC utilizing versions prior to 1.2.8 are urged to upgrade to the patched version to mitigate this risk.

Affected Version(s)

go-upf < 1.2.8

References

https://github.com/free5gc/free5gc/security/advisories/GH...
x_refsource_CONFIRM
https://github.com/free5gc/free5gc/issues/746
x_refsource_MISC
https://github.com/free5gc/go-upf/pull/85
x_refsource_MISC

CVSS V4

Score:
2.7
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.