Lucene search
+L

12 matches found

snyk
snyk
added 2026/07/04 11:13 a.m.7 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the NGSetupRequest process. An attacker can cause the service to become unavailable by sending specially crafted requests remotely. Remediation Upgrade github.com/omec-project/amf/gmm to version...

5.3CVSS5.9AI score0.00317EPSS
Exploits0References2
snyk
snyk
added 2026/07/04 11:13 a.m.4 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the NGSetupRequest process. An attacker can cause the service to become unavailable by sending specially crafted requests remotely. Remediation Upgrade github.com/omec-project/amf/ngap to version...

5.3CVSS5.9AI score0.00317EPSS
Exploits0References2
snyk
snyk
added 2026/05/23 1:42 p.m.12 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow in the NGSetupRequest process. An attacker can cause memory corruption and potentially compromise confidentiality, integrity, and availability by sending specially crafted requests remotely. Remediation Upgrade...

6.5CVSS6.6AI score0.00228EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/23 11:45 a.m.9 views

CVE-2026-9300

A vulnerability has been found in omec-project amf up to 2.1.1. This affects an unknown part of the component NGSetupRequest Handler. Such manipulation leads to memory corruption. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. It is best practic...

6.5CVSS6AI score0.00228EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/05/23 11:45 a.m.11 views

EUVD-2026-31534

A vulnerability has been found in omec-project amf up to 2.1.1. This affects an unknown part of the component NGSetupRequest Handler. Such manipulation leads to memory corruption. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. It is best practic...

6.5CVSS6AI score0.00228EPSS
Exploits0References6
osv
osv
added 2026/05/23 11:45 a.m.3 views

CVE-2026-9300 omec-project amf NGSetupRequest memory corruption

A vulnerability has been found in omec-project amf up to 2.1.1. This affects an unknown part of the component NGSetupRequest Handler. Such manipulation leads to memory corruption. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. It is best practic...

5.3CVSS5.8AI score0.00228EPSS
Exploits0References8
github
github
added 2026/05/18 3:31 a.m.12 views

AMF Improperly Restricts Operations within the Bounds of a Memory Buffer

A vulnerability was determined in omec-project amf up to 2.1.3-dev. Impacted is the function NGSetupRequest of the file ngap/handler.go. Executing a manipulation of the argument InformationElement can lead to memory corruption. The attack can be launched remotely. The exploit has been publicly...

5.3CVSS5.4AI score0.00303EPSS
Exploits0References9Affected Software1
osv
osv
added 2026/05/18 1:15 a.m.3 views

CVE-2026-8779 omec-project amf handler.go NGSetupRequest memory corruption

A vulnerability was determined in omec-project amf up to 2.1.3-dev. Impacted is the function NGSetupRequest of the file ngap/handler.go. Executing a manipulation of the argument InformationElement can lead to memory corruption. The attack can be launched remotely. The exploit has been publicly...

5.3CVSS5.4AI score0.00303EPSS
Exploits0References9
redhatcve
redhatcve
added 2026/04/07 5:6 p.m.5 views

CVE-2026-5661

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used...

6.9CVSS5.6AI score0.00419EPSS
Exploits0References1
cve
cve
added 2026/04/06 2:8 p.m.14 views

CVE-2026-5661

The CVE-2026-5661 affects Free5GC 4.2.0, specifically the NGSetupRequest Handler. The vulnerability allows denial of service via remote manipulation of the NGSetupRequest function. The attack can be launched remotely, and a public exploit is available. No remediation details are provided in the s...

6.9CVSS5.7AI score0.00419EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/04/06 12:0 a.m.8 views

PT-2026-30605

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used...

6.9CVSS5.7AI score0.00419EPSS
Exploits0References8
osv
osv
added 2025/11/10 12:0 a.m.4 views

CVE-2025-63288

In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service...

7.5CVSS6.7AI score0.0031EPSS
Exploits0References4
Rows per page
Query Builder