Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds via the NGSetupRequest function in the ngap/handler.go file when processing the InformationElement argument. An attacker can cause memory corruption by sending specially crafted requests remotely. Remediation Upgrade...

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds via the NGSetupRequest function in the ngap/handler.go file when processing the InformationElement argument. An attacker can cause memory corruption by sending specially crafted requests remotely. Remediation Upgrade...

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds via the NGSetupRequest function in the ngap/handler.go file when processing the InformationElement argument. An attacker can cause memory corruption by sending specially crafted requests remotely. Remediation Upgrade...

GHSA-FXVJ-WQV2-XGCQ AMF Improperly Restricts Operations within the Bounds of a Memory Buffer

A vulnerability was determined in omec-project amf up to 2.1.3-dev. Impacted is the function NGSetupRequest of the file ngap/handler.go. Executing a manipulation of the argument InformationElement can lead to memory corruption. The attack can be launched remotely. The exploit has been publicly...

CVE-2026-8779

The CVE affects omec-project AMF up to version 2.1.3-dev, specifically the NGSetupRequest function in ngap/handler.go. A manipulation of the InformationElement argument can cause memory corruption, with remote exploitation. Public disclosure of the exploit is noted. Mitigation is to upgrade to ve...

PT-2026-1034

Name of the Vulnerable Software and Affected Versions Open5GS versions prior to 2.7.7 Description A security issue exists in Open5GS. The ogs gtp2 parse bearer qos function within the Bearer QoS IE Length Handler component, located in lib/gtp/v2/types.c, is susceptible to manipulation, leading to...