Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-14624
PUBLISHED
More InfoOfficial Page
Assigner-VulDB
Assigner Org ID-1af790b2-7ee1-4545-860a-a788eba489b5
View Known Exploited Vulnerability (KEV) details
Published At-04 Jul, 2026 | 10:15
Updated At-04 Jul, 2026 | 10:15
Rejected At-
▼CVE Numbering Authority (CNA)
omec-project amf NGSetupRequest handler.go denial of service

A vulnerability was identified in omec-project amf up to 2.0.2/2.1.1. Impacted is an unknown function of the file /go/src/amf/ngap/handler.go of the component NGSetupRequest Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The identifier of the patch is 34bc6724acc97dba1f8691e586da95b042cb612d. To fix this issue, it is recommended to deploy a patch.

Affected Products
Vendor
omec-project
Product
amf
CPEs
  • cpe:2.3:a:omec-project:amf:*:*:*:*:*:*:*:*
Modules
  • NGSetupRequest Handler
Versions
Affected
  • 2.0.0
  • 2.0.1
  • 2.0.2
  • 2.1.0
  • 2.1.1
Problem Types
TypeCWE IDDescription
CWECWE-404Denial of Service
Type: CWE
CWE ID: CWE-404
Description: Denial of Service
Metrics
VersionBase scoreBase severityVector
4.05.3MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
3.14.3MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
3.04.3MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
2.04.0N/A
AV:N/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C
Version: 4.0
Base score: 5.3
Base severity: MEDIUM
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P
Version: 3.1
Base score: 4.3
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
Version: 3.0
Base score: 4.3
Base severity: MEDIUM
Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
Version: 2.0
Base score: 4.0
Base severity: N/A
Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

reporter
shovon0203 (VulDB User)
Timeline
EventDate
Advisory disclosed2026-07-03 00:00:00
VulDB entry created2026-07-03 02:00:00
VulDB entry last update2026-07-03 19:06:13
Event: Advisory disclosed
Date: 2026-07-03 00:00:00
Event: VulDB entry created
Date: 2026-07-03 02:00:00
Event: VulDB entry last update
Date: 2026-07-03 19:06:13
Replaced By

Rejected Reason

References
HyperlinkResource
https://vuldb.com/vuln/376140
vdb-entry
https://vuldb.com/vuln/376140/cti
signature
permissions-required
https://vuldb.com/cve/CVE-2026-14624
third-party-advisory
https://vuldb.com/submit/845349
third-party-advisory
https://github.com/omec-project/amf/issues/677
exploit
issue-tracking
https://github.com/omec-project/amf/pull/666
issue-tracking
patch
https://github.com/omec-project/amf/commit/34bc6724acc97dba1f8691e586da95b042cb612d
patch
https://github.com/omec-project/amf/
product
Hyperlink: https://vuldb.com/vuln/376140
Resource:
vdb-entry
Hyperlink: https://vuldb.com/vuln/376140/cti
Resource:
signature
permissions-required
Hyperlink: https://vuldb.com/cve/CVE-2026-14624
Resource:
third-party-advisory
Hyperlink: https://vuldb.com/submit/845349
Resource:
third-party-advisory
Hyperlink: https://github.com/omec-project/amf/issues/677
Resource:
exploit
issue-tracking
Hyperlink: https://github.com/omec-project/amf/pull/666
Resource:
issue-tracking
patch
Hyperlink: https://github.com/omec-project/amf/commit/34bc6724acc97dba1f8691e586da95b042cb612d
Resource:
patch
Hyperlink: https://github.com/omec-project/amf/
Resource:
product
Details not found