CVE-2026-8783

MEDIUM CVSS 4.3 View on NVD ↗

Description

A security vulnerability has been detected in omec-project amf up to 2.1.3-dev. This impacts the function UERadioCapabilityCheckResponse of the file ngap/dispatcher.go. Such manipulation leads to null pointer dereference. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 2.2.0 will fix this issue. Upgrading the affected component is advised. The same pull request fixes multiple security issues.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

References

https://github.com/omec-project/amf/
https://github.com/omec-project/amf/issues/675
https://github.com/omec-project/amf/pull/666
https://github.com/omec-project/amf/releases/tag/v2.2.0
https://vuldb.com/submit/811655
https://vuldb.com/vuln/364407
https://vuldb.com/vuln/364407/cti
https://vuldb.com/submit/811655

Published: May 18, 2026 04:16 UTC Modified: May 18, 2026 20:16 UTC