CVE-2026-5360

Exploit

EPSS 0.06%
Veröffentlicht 02.04.2026 17:00:19
Zuletzt bearbeitet 03.04.2026 16:10:23
Quelle cna@vuldb.com
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability has been found in Free5GC 4.2.0. The affected element is an unknown function of the component aper. Such manipulation leads to type confusion. The attack may be launched remotely. This attack is characterized by high complexity. The exploitability is described as difficult. The exploit has been disclosed to the public and may be used. The name of the patch is 26205eb01705754b7b902ad6c4b613c96c881e29. It is best practice to apply a patch to resolve this issue.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Herstellern/a

≫

Produkt Free5GC

Version 4.2.0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.187

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
cna@vuldb.com	3.7	2.2	1.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
cna@vuldb.com	6.3	0	0	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
cna@vuldb.com	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:N/I:N/A:P

CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')

The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

https://github.com/free5gc/free5gc/

https://vuldb.com/vuln/354735

https://vuldb.com/vuln/354735/cti

https://vuldb.com/submit/781573

https://github.com/free5gc/free5gc/issues/831

https://github.com/free5gc/aper/pull/11

https://github.com/free5gc/free5gc/issues/831#issue-3996453112

https://github.com/free5gc/aper/commit/26205eb01705754b7b902ad6c4b613c96c881e29

https://nvd.nist.gov/vuln/detail/CVE-2026-5360

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-5360

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-5360

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-5360