Nil Pointer Dereference Vulnerability in Free5GC 5G Mobile Core Network
CVE-2026-33064

8.7HIGH

Key Information:

Vendor

Free5gc

Status
Free5gc
Vendor
CVE Published:
20 March 2026

What is CVE-2026-33064?

Free5GC, a project driven by the Linux Foundation for 5G mobile core networks, has a vulnerability in its UDM service before version 1.4.2 that can lead to a procedure panic via Nil Pointer Dereference. Affected versions allow remote attackers to crash the service by sending specially crafted POST requests to the /sdm-subscriptions endpoint, containing malformed URL paths and large JSON payloads. This results in an invalid memory access during the execution of the DataChangeNotificationProcedure, causing a complete service disruption until it is manually restarted. The issue has been addressed and resolved in version 1.4.2.

Affected Version(s)

free5gc < 1.4.2

References

https://github.com/free5gc/free5gc/security/advisories/GH...
x_refsource_CONFIRM
https://github.com/free5gc/free5gc/issues/781
x_refsource_MISC
https://github.com/free5gc/udm/pull/78
x_refsource_MISC

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.