Remote Code Injection in free5GC UDM by free5GC
CVE-2026-27642

6.6MEDIUM

Key Information:

Vendor

Free5gc

Status
Udm
Vendor
CVE Published:
24 February 2026

What is CVE-2026-27642?

The free5GC Unified Data Management (UDM) component is susceptible to a vulnerability that allows remote attackers to inject control characters into the 'supi' parameter. This can trigger URL parsing errors, revealing sensitive system-level error information and enabling potential attackers to perform service fingerprinting. All instances of free5GC using the Nudm_UEAU service could be compromised. To mitigate this issue, users should apply the official patches available in the free5GC repositories as no direct workaround exists at the application level.

Affected Version(s)

udm <= 1.4.1

References

https://github.com/free5gc/free5gc/security/advisories/GH...
x_refsource_CONFIRM
https://github.com/free5gc/free5gc/issues/749
x_refsource_MISC
https://github.com/free5gc/udm/pull/75
x_refsource_MISC

CVSS V4

Score:
6.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.