What is CVE-2026-9298?

CVE-2026-9298 is a medium-severity vulnerability in Omec-project Amf, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 6.3/10. Published 2026-05-23.

How severe is CVE-2026-9298?

Medium severity. CVSS v3 base score is 6.3 out of 10.

Buffer overflow in Omec-project Amf

CVE-2026-9298

A vulnerability was detected in omec-project amf up to 2.1.1. Affected by this vulnerability is an unknown functionality of the component PathSwitchRequest Handler. The manipulation results in memory corruption. The attack may be launched…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (16.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.

Affected products

Omec-project Amf — versions 2.1.0, 2.1.1

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cna@vuldb.com (vdb-entry)
cna@vuldb.com (signature, permissions-required)
cna@vuldb.com (third-party-advisory)
cna@vuldb.com (issue-tracking, exploit)
cna@vuldb.com (issue-tracking, patch)
cna@vuldb.com (product)

Frequently asked questions

What is CVE-2026-9298?: CVE-2026-9298 is a medium-severity vulnerability in Omec-project Amf, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 6.3/10. Published 2026-05-23.
How severe is CVE-2026-9298?: Medium severity. CVSS v3 base score is 6.3 out of 10.