CVE-2026-34761

Medium CVSS: 5.8

Ella Core is a 5G core designed for private networks. Prior to version 1.8.0, Ella Core panics when processing a NGAP handover failure message. An attacker able to cause a gNodeB to send NGAP handover failure messages to Ella Core can crash the process, causing service disruption for all connected subscribers. This issue has been patched in version 1.8.0.

Vendor

Product

CWE

CWE-476

Yayın Tarihi

2026-04-02 20:16:25

Güncelleme

2026-04-03 16:10:23

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-476 MEDIUM 2026

Referanslar

https://github.com/ellanetworks/core/releases/tag/v1.8.0 https://github.com/ellanetworks/core/security/advisories/GHSA-6gm8-3g4h-w82m