CVE-2026-14623
Severity CVSS v4.0:
LOW
Type:
CWE-404
Improper Resource Shutdown or Release
Publication date:
04/07/2026
Last modified:
04/07/2026
Description
A vulnerability was determined in omec-project amf up to 2.1.1. This issue affects the function RRCInactiveTransitionReport of the component NGAP Message Handler. Executing a manipulation can lead to denial of service. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. This patch is called 34bc6724acc97dba1f8691e586da95b042cb612d. A patch should be applied to remediate this issue.
Impact
Base Score 4.0
2.10
Severity 4.0
LOW
Base Score 3.x
4.30
Severity 3.x
MEDIUM
Base Score 2.0
4.00
Severity 2.0
MEDIUM
References to Advisories, Solutions, and Tools
- https://github.com/omec-project/amf/
- https://github.com/omec-project/amf/commit/34bc6724acc97dba1f8691e586da95b042cb612d
- https://github.com/omec-project/amf/issues/676
- https://github.com/omec-project/amf/pull/666
- https://vuldb.com/cve/CVE-2026-14623
- https://vuldb.com/submit/845348
- https://vuldb.com/vuln/376139
- https://vuldb.com/vuln/376139/cti



