—
GO-2026-5138
Free5GC UDM has Improper Input Validation and Generation of Error Messages Containing Sensitive Information in github.com/free5gc/udm
Details
Free5GC UDM has Improper Input Validation and Generation of Error Messages Containing Sensitive Information in github.com/free5gc/udm
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/free5gc/udm
Introduced in:
0 No fixed version published yet for github.com/free5gc/udm (go modules). Pin to a known-safe version or switch to an alternative.
References
- https://github.com/free5gc/free5gc/security/advisories/GHSA-585v-hcgf-jhfr [ADVISORY]
- https://nvd.nist.gov/vuln/detail/CVE-2026-42459 [ADVISORY]
- https://github.com/free5gc/free5gc/security/advisories/GHSA-h4wg-rp7m-8xx4 [WEB]
- https://github.com/free5gc/udm/blob/v1.4.3/internal/sbi/api_subscriberdatamanagement.go [WEB]