Denial of Service Vulnerability in Free5GC by Free5GC
CVE-2026-30653

7.5HIGH

Key Information:

Vendor: Free5GC
Status: Free5GC
Vendor: CVE Published:; 24 March 2026

What is CVE-2026-30653?

Free5GC versions up to 4.2.0 are susceptible to a denial of service attack. A remote attacker can exploit the HandleAuthenticationFailure function within the AMF component to disrupt the service, potentially rendering the system inoperable. This vulnerability highlights the need for timely updates and robust security practices.

References

https://github.com/free5gc/free5gc/issues/826

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 24, 2026
Vulnerability Reserved
Mar 4, 2026

CVE-2026-30653 Data

JSON