| CVE-2026-44473 |
high |
7.1 |
7.1 |
|
|
|
8d ago |
Ella Core is a 5G core designed for private networks. Prior to 1.10.0, a radio with a valid NG Setup can send a forged PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID. Ella Core does… |
| CVE-2026-44475 |
medium |
6.1 |
6.1 |
|
|
|
8d ago |
Ella Core is a 5G core designed for private networks. Prior to 1.10.0, Ella Core does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored va… |
| CVE-2026-44474 |
low |
3.7 |
3.7 |
|
|
|
8d ago |
Ella Core has handover failures during concurrent Security Mode Command |
| CVE-2026-34762 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber |
| CVE-2026-34761 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core Panics Upon NGAP handover failure |
| CVE-2026-33907 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core Panics during NAS Authentication Response/Failure with missing IEs in github.com/ellanetworks/core |
| CVE-2026-33906 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core has Privilege Escalation via Database Restore by NetworkManager role in github.com/ellanetworks/core |
| CVE-2026-33904 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core has a Denial of Service via SCTP connection cleanup deadlock in github.com/ellanetworks/core |
| CVE-2026-33903 |
unknown |
— |
— |
|
|
|
2mo ago |
Ella Core panics when processing a crafted NGAP LocationReport message in github.com/ellanetworks/core |
| CVE-2026-33283 |
unknown |
— |
— |
|
|
|
3mo ago |
Ella Core panics on malformed ULNASTransport Message without a Request Type in github.com/ellanetworks/core |
| CVE-2026-33282 |
unknown |
— |
— |
|
|
|
3mo ago |
Ella Core panics on malformed NGAP Location Report in github.com/ellanetworks/core |
| CVE-2026-33281 |
unknown |
— |
— |
|
|
|
3mo ago |
Ella Core panics on invalid PDU Session IDs in NGAP messages in github.com/ellanetworks/core |
| CVE-2026-32320 |
unknown |
— |
— |
|
|
|
3mo ago |
Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings in github.com/ellanetworks/core |
| CVE-2026-32319 |
unknown |
— |
— |
|
|
|
3mo ago |
Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload in github.com/ellanetworks/core |
