An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of service via crafted POST request to the Nnssf_NSSAIAvailability API.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/60xxx/CVE-2025-60638.json",
"cna_assigner": "mitre"
}{
"source": "CPE_STRING",
"cpe": [
"cpe:2.3:a:free5gc:free5gc:4.0.0:*:*:*:*:*:*:*",
"cpe:2.3:a:free5gc:free5gc:4.0.1:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "4.0.0"
},
{
"last_affected": "4.0.0"
},
{
"introduced": "4.0.1"
},
{
"last_affected": "4.0.1"
}
]
}