Denial of Service Vulnerability in Free5GC AMF Functionality
CVE-2026-4531

6.9MEDIUM

Key Information:

Vendor

Free5GC

Status
Free5gc
Vendor
CVE Published:
22 March 2026

What is CVE-2026-4531?

A denial of service vulnerability has been discovered in Free5GC version 4.1.0, specifically in the HandleRegistrationComplete function of the AMF component. An attacker can exploit this weakness remotely, leading to service disruptions. It is strongly advised to apply the patch identified as 52e9386401ce56ea773c5aa587d4cdf7d53da799 to mitigate this risk and ensure continued service availability.

Affected Version(s)

Free5GC 4.1.0

References

https://vuldb.com/?id.352319
vdb-entrytechnical-description
https://vuldb.com/?ctiid.352319
signaturepermissions-required
https://vuldb.com/?submit.774073
third-party-advisory

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

shovon0203 (VulDB User)
.