Primary

Context

OMEC Project AMF Memory Corruption Vulnerability in PathSwitchRequest Handler

Vulnerability

Patched

A memory corruption vulnerability has been identified in the OMEC Project AMF component, specifically in versions through 2.1.1. The issue arises in the PathSwitchRequest Handler, where an invalid User Equipment (UE) context can be sent, leading to a crash of the AMF. This vulnerability can be exploited remotely, and the exploit is now public.

Impact

Exploitation of this vulnerability causes a segmentation fault, crashing the AMF service. The log indicates that the crash occurs due to a nil pointer dereference, which is a common type of memory corruption error.

Reproduction

To reproduce this vulnerability, send a PathSwitchRequest NGAP packet without a valid UE context. The AMF will crash upon processing the malformed request.

Remediation

Users are advised to update to OMEC Project AMF version 2.2.1, which addresses this vulnerability.

Added: May 26, 2026, 1:46 PM

Updated: May 26, 2026, 1:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.2

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

9.2

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OMEC Project AMF Memory Corruption Vulnerability in PathSwitchRequest Handler

Vulnerability

Impact

Reproduction

Remediation

Affected Products

omec-project amf

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating