GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
5 advisories
free5gc UDR fail-open request handling in PolicyDataSubsToNotifySubsIdPut may allow unintended subscription updates after input errors
Moderate
CVE-2026-40249
was published
for
github.com/free5gc/udr
(Go)
Apr 14, 2026
free5gc UDR improper path validation allows unauthenticated creation and modification of Traffic Influence Subscriptions
High
CVE-2026-40248
was published
for
github.com/free5gc/udr
(Go)
Apr 14, 2026
free5gc UDR improper path validation allows unauthenticated access to Traffic Influence Subscriptions
High
CVE-2026-40247
was published
for
github.com/free5gc/udr
(Go)
Apr 14, 2026
free5gc UDR improper path validation allows unauthenticated deletion of Traffic Influence Subscriptions
High
CVE-2026-40246
was published
for
github.com/free5gc/udr
(Go)
Apr 14, 2026
free5gc UDR nudr-dr influenceData/subs-to-notify leaks SUPI in error response body without authentication
High
CVE-2026-40245
was published
for
github.com/free5gc/udr
(Go)
Apr 14, 2026
ProTip!
Advisories are also available from the
GraphQL API