CVE-2026-40343: CWE-754: Improper Check for Unusual or Exceptional Conditions in free5gc udr
CVE-2026-40343 is a medium severity vulnerability in free5GC UDR versions up to 1. 4. 2. It involves a fail-open flaw in the POST handler for /nudr-dr/v2/policy-data/subs-to-notify, where the service continues processing requests despite errors in retrieving or deserializing the request body. This can lead to unintended creation of Policy Data notification subscriptions with invalid or incomplete input. No patch or official fix is currently available.
AI Analysis
Technical Summary
The vulnerability affects free5GC's User Data Repository (UDR) component, specifically in versions up to 1.4.2. The issue is a failure to properly check for unusual or exceptional conditions (CWE-754) during request processing in the /nudr-dr/v2/policy-data/subs-to-notify POST handler. When errors occur in reading or deserializing the request body, the service improperly continues processing, potentially resulting in creation of notification subscriptions with invalid, empty, or partially processed data. This behavior depends on downstream processor handling. As of the publication date, no patch or remediation has been released.
Potential Impact
The vulnerability may cause the UDR service to create unintended Policy Data notification subscriptions with invalid or incomplete input data. This could lead to inconsistent or incorrect policy data states within the 5G core network environment. There is no indication of privilege escalation, remote code execution, or denial of service from the provided data. No known exploits are reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is available at this time, users should monitor vendor communications for updates. Until a patch is released, consider implementing input validation or request filtering at network boundaries if feasible to reduce risk of malformed requests reaching the UDR service.
CVE-2026-40343: CWE-754: Improper Check for Unusual or Exceptional Conditions in free5gc udr
Description
CVE-2026-40343 is a medium severity vulnerability in free5GC UDR versions up to 1. 4. 2. It involves a fail-open flaw in the POST handler for /nudr-dr/v2/policy-data/subs-to-notify, where the service continues processing requests despite errors in retrieving or deserializing the request body. This can lead to unintended creation of Policy Data notification subscriptions with invalid or incomplete input. No patch or official fix is currently available.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability affects free5GC's User Data Repository (UDR) component, specifically in versions up to 1.4.2. The issue is a failure to properly check for unusual or exceptional conditions (CWE-754) during request processing in the /nudr-dr/v2/policy-data/subs-to-notify POST handler. When errors occur in reading or deserializing the request body, the service improperly continues processing, potentially resulting in creation of notification subscriptions with invalid, empty, or partially processed data. This behavior depends on downstream processor handling. As of the publication date, no patch or remediation has been released.
Potential Impact
The vulnerability may cause the UDR service to create unintended Policy Data notification subscriptions with invalid or incomplete input data. This could lead to inconsistent or incorrect policy data states within the 5G core network environment. There is no indication of privilege escalation, remote code execution, or denial of service from the provided data. No known exploits are reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official fix or patch is available at this time, users should monitor vendor communications for updates. Until a patch is released, consider implementing input validation or request filtering at network boundaries if feasible to reduce risk of malformed requests reaching the UDR service.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-10T22:50:01.358Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69e80fc419fe3cd2cd07fdbc
Added to database: 4/22/2026, 12:01:08 AM
Last enriched: 4/22/2026, 12:16:12 AM
Last updated: 4/22/2026, 1:03:08 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.