HomeCVE Intelligence › CVE-2026-42083
CVSS 8.2 HIGH Vulnerability

CVE-2026-42083: Free5GC PCF: Missing authentication middleware in Npcf_SMPolicyControl allows access to S…

Summary PCF Npcf_SMPolicyControl missing authentication middleware allows unauthenticated access to SM policy handlers and disclosure of subscriber SUPI Details In NewServer(), the smPolicyGroup route group is created a…

8.2CVSS Score
HIGHSeverity
NOCISA KEV
VulnerabilityImpact Type

📋 Vulnerability Details

CVE IDCVE-2026-42083
Vendorgo
Affected Productgithub.com/free5gc/pcf
Vulnerability TypeVulnerability
CVSS Score8.2 (HIGH)
Actively Exploited❌ No known exploitation
Patch StatusSee Vendor Advisory →
Reported ByCYBERDUDEBIVASH SENTINEL APEX Intelligence (via github_advisories)

🔬 Technical Analysis

#

Summary

PCF Npcf_SMPolicyControl missing authentication middleware allows unauthenticated access to SM policy handlers and disclosure of subscriber SUPI #

Details

GET /npcf-smpolicycontrol/v1/sm-policies/{smPolicyId}
POST /npcf-smpolicycontrol/v1/sm-policies/{smPolicyId}/update
• `POST /npcf-smpolicycontrol/v1/sm-policies/

In NewServer(), the smPolicyGroup route group is created and routes are applied without attaching the router authorization middleware. In contrast, other PCF service groups such as Npcf_PolicyAuthorization do attach RouterAuthorizationCheck before route registration. Because the middleware is missing, requests to the following endpoints can reach business logic even when no valid OAuth token is provided: - POST /npcf-smpolicycontrol/v1/sm-policies

📚 Advisory References

⚡ DETECTION RULES AVAILABLE

Get CVE-2026-42083 Detection Pack

Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.

✓ Sigma Rules ✓ YARA Pack ✓ IOC Table ✓ SIEM Queries
🛡️ Get Detection Pack → 🔌 Access via API →

🔗 Related Intelligence