omec-project amf NGAP Message dispatcher.go memory corruption_CVE-2026-8780

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was identified in omec-project amf up to 2.1.3-dev. The affected element is an unknown function of the file ngap/dispatcher.go of the component NGAP Message Handler. The manipulation leads to memory corruption. The attack may be initiated remotely. The exploit is publicly available and might be used. Upgrading to version 2.2.0 is sufficient to fix this issue. It is suggested to upgrade the affected component. The same pull request fixes multiple security issues.

Basic Information

ID CVE-2026-8780

Source VulDB

Published May 18, 2026 at 01:30

Affected Product

Vendor omec-project

Product amf

Version 2.1.3-dev

Affected Versions omec-project amf 2.1.3-dev

CWE Classification

CWE-119

References

{
    "lastseen": "",
    "description": "A vulnerability was identified in omec-project amf up to 2.1.3-dev. The affected element is an unknown function of the file ngap/dispatcher.go of the component NGAP Message Handler. The manipulation leads to memory corruption. The attack may be initiated remotely. The exploit is publicly available and might be used. Upgrading to version 2.2.0 is sufficient to fix this issue. It is suggested to upgrade the affected component. The same pull request fixes multiple security issues.",
    "published": "2026-05-18T01:30:14.757Z",
    "modified": "2026-05-18T01:30:14.757Z",
    "type": "cve",
    "title": "omec-project amf NGAP Message dispatcher.go memory corruption",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/364404\nhttps://vuldb.com/vuln/364404/cti\nhttps://vuldb.com/submit/811617\nhttps://github.com/omec-project/amf/issues/670\nhttps://github.com/omec-project/amf/pull/666\nhttps://github.com/omec-project/amf/releases/tag/v2.2.0\nhttps://github.com/omec-project/amf/",
    "id": "CVE-2026-8780",
    "bulletinFamily": "",
    "cwe": [
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "omec-project amf 2.1.3-dev",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "amf",
    "version": "2.1.3-dev",
    "vendor": "omec-project",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}