free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the free5GC UDM component fails to validate the supi path parameter in six GET handlers of the nudm-sdm (Subscriber Data Management) service. An unauthenticated attacker can inject control characters into the SUPI parameter, causing UDM to forward a malformed request to UDR and return a 500 Internal Server Error response that exposes internal infrastructure details. This vulnerability is fixed in 4.2.2.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/42xxx/CVE-2026-42459.json",
"cna_assigner": "GitHub_M",
"cwe_ids": [
"CWE-20",
"CWE-209"
]
}{
"cpe": "cpe:2.3:a:free5gc:free5gc:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "4.2.2"
}
],
"source": [
"AFFECTED_FIELD",
"CPE_RANGE"
]
}