Threats Tagged 'cve-2026-32937'
View all threats tagged with 'cve-2026-32937'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-32937'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-32937: CWE-129: Improper Validation of Array Index in free5gc chfCVE-2026-32937 0 CVE-2026-32937 is a high-severity vulnerability in free5GC's CHF component prior to version 1.2.2, caused by improper validation of array indexes leading to out-of-bounds slice access. An authenticated attacker can trigger a server-side panic via a crafted PUT request to the recharge endpoint, causing service disruption. While some deployments convert this panic into HTTP 500 errors, others may experience more severe outages. The vulnerability can be exploited repeatedly to degrade recharge functionality and flood logs, impacting availability. Mitigations include restricting access to trusted network functions, applying rate limiting, disabling the recharge API if unused, and ensuring panic recovery and monitoring are in place. This vulnerability affects 5G core network deployments using free5GC CHF, particularly in countries with active 5G infrastructure adopting open-source core solutions. The CVSS 4.0 score is 7. Join the discussion | CVE Database V5 | 03/20/2026, 02:43:18 UTC Added: 03/20/2026, 03:24:21 UTC |
Showing 1 to 1 of 1 result