free5GC is an open-source implementation of the 5G core network
Before version 4.2.2, free5GC's AMF component does not enforce rules for concurrent security procedures, such as N2 handovers and NAS Security Mode Commands. This oversight can lead to mismatches between NAS and AS security contexts in both the network and the User Equipment (UE). This vulnerability is fixed in version 4.2.2.
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not enforce the concurrent security procedure rules defined in 3GPP TS 33.501 §6.9.5.1. The AMF does not check for ongoing N2 handover procedures before initiating a NAS Security Mode Command, and vice versa. This can lead to mismatches between NAS and AS security contexts in the network and the UE. This vulnerability is fixed in 4.2.2.
Users of free5GC prior to 4.2.2 face a low risk of security context mismatches if concurrent security procedures are not properly managed, potentially impacting security integrity.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
0
Affected Products
1
References
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
Exploitability
Impact