CVE-2026-8349: Memory Corruption in omec-project amf
A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation can lead to memory corruption. The attack can be launched remotely. The exploit has been published and may be used. This patch is called 8a4c33cdda866094f1989bdeff6d8642fce8de8435f89defd66831c97715f5aa. It is best practice to apply a patch to resolve this issue.
AI Analysis
Technical Summary
This vulnerability affects the NGAP Message Handler component of omec-project amf versions 2.1.0 and 2.1.1. It involves a memory corruption flaw triggered by remote manipulation without user interaction or privileges. The CVSS 4.0 base score is 5.3, indicating medium severity. The vulnerability can be mitigated by applying the referenced patch commit. No official remediation level is provided in the source data, but the patch commit is identified.
Potential Impact
Successful exploitation can lead to memory corruption remotely, potentially impacting the stability or security of the affected system. The CVSS vector indicates no privileges or user interaction are required, but the attack complexity is low and the vulnerability has limited impact on confidentiality, integrity, and availability (low impact). There are no known exploits in the wild currently.
Mitigation Recommendations
Apply the patch identified by commit 8a4c33cdda866094f1989bdeff6d8642fce8de8435f89defd66831c97715f5aa to affected versions 2.1.0 and 2.1.1 of omec-project amf. Patch status is not explicitly confirmed by a vendor advisory, so verify with the official project repository or vendor channels for the latest remediation guidance.
CVE-2026-8349: Memory Corruption in omec-project amf
Description
A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation can lead to memory corruption. The attack can be launched remotely. The exploit has been published and may be used. This patch is called 8a4c33cdda866094f1989bdeff6d8642fce8de8435f89defd66831c97715f5aa. It is best practice to apply a patch to resolve this issue.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability affects the NGAP Message Handler component of omec-project amf versions 2.1.0 and 2.1.1. It involves a memory corruption flaw triggered by remote manipulation without user interaction or privileges. The CVSS 4.0 base score is 5.3, indicating medium severity. The vulnerability can be mitigated by applying the referenced patch commit. No official remediation level is provided in the source data, but the patch commit is identified.
Potential Impact
Successful exploitation can lead to memory corruption remotely, potentially impacting the stability or security of the affected system. The CVSS vector indicates no privileges or user interaction are required, but the attack complexity is low and the vulnerability has limited impact on confidentiality, integrity, and availability (low impact). There are no known exploits in the wild currently.
Mitigation Recommendations
Apply the patch identified by commit 8a4c33cdda866094f1989bdeff6d8642fce8de8435f89defd66831c97715f5aa to affected versions 2.1.0 and 2.1.1 of omec-project amf. Patch status is not explicitly confirmed by a vendor advisory, so verify with the official project repository or vendor channels for the latest remediation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-05-11T16:28:46.399Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a026bb1cbff5d86106f2ceb
Added to database: 5/11/2026, 11:52:17 PM
Last enriched: 5/12/2026, 12:06:24 AM
Last updated: 5/12/2026, 1:55:10 AM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.