pkg:Go/github.com/ellanetworks/core

23 total CVEsHIGH7MEDIUM14LOW2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-33282Ella Core panics on malformed NGAP Location Report
    from 0, < 1.6.0
  • HIGH7.5CVE-2026-33282Ella Core panics on malformed NGAP Location Report
    from 0, < 1.6.0
  • HIGH7.5CVE-2026-32319Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload
    from 0, < 1.5.1
  • HIGH7.5CVE-2026-32319Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload
    from 0, < 1.5.1
  • HIGH7.2CVE-2026-33906Ella Core has Privilege Escalation via Database Restore by NetworkManager role
    from 0, < 1.7.0
  • HIGH7.2CVE-2026-33906Ella Core has Privilege Escalation via Database Restore by NetworkManager role
    from 0, < 1.7.0
  • HIGH7.1CVE-2026-44473Ella Core Vulnerable to UE Downlink Redirection via Forged PDUSessionResourceSetupResponse
    from 0, < 1.10.0
  • MEDIUM6.5CVE-2026-33907Ella Core Panics during NAS Authentication Response/Failure with missing IEs
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33907Ella Core Panics during NAS Authentication Response/Failure with missing IEs
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33904Ella Core has a Denial of Service via SCTP connection cleanup deadlock
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33904Ella Core has a Denial of Service via SCTP connection cleanup deadlock
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33903Ella Core panics when processing a crafted NGAP LocationReport message
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33903Ella Core panics when processing a crafted NGAP LocationReport message
    from 0, < 1.7.0
  • MEDIUM6.5CVE-2026-33283Ella Core panics on malformed ULNASTransport Message without a Request Type
    from 0, < 1.6.0
  • MEDIUM6.5CVE-2026-33283Ella Core panics on malformed ULNASTransport Message without a Request Type
    from 0, < 1.6.0
  • MEDIUM6.5CVE-2026-33281Ella Core panics on invalid PDU Session IDs in NGAP messages
    from 0, < 1.6.0
  • MEDIUM6.5CVE-2026-33281Ella Core panics on invalid PDU Session IDs in NGAP messages
    from 0, < 1.6.0
  • MEDIUM6.5CVE-2026-32320Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings
    from 0, < 1.5.1
  • MEDIUM6.5CVE-2026-32320Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings
    from 0, < 1.5.1
  • MEDIUM6.1CVE-2026-44475Ella Core has a UE Security Capability bypass on NGAP PathSwitchRequest
    from 0, < 1.10.0
  • MEDIUM5.8CVE-2026-34761Ella Core Panics Upon NGAP handover failure
    from 0, < 1.8.0
  • LOW3.7CVE-2026-44474Ella Core has handover failures during concurrent Security Mode Command
    from 0, < 1.10.0
  • LOW2.7CVE-2026-34762Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber
    from 0, < 1.8.0