| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-34762 | Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber | ellanetworks | core | Low | 2.7 | 2026-04-02 19:03:54 | Deep Dive |
| CVE-2026-34761 | Ella Core Panics Upon NGAP handover failure | ellanetworks | core | Medium | 5.8 | 2026-04-02 19:03:05 | Deep Dive |
| CVE-2026-33907 | Ella Core Panics during NAS Authentication Response/Failure with missing IEs | ellanetworks | core | Medium | 6.5 | 2026-03-27 20:58:07 | Deep Dive |
| CVE-2026-33906 | Ella Core has Privilege Escalation via Database Restore by NetworkManager role | ellanetworks | core | High | 7.2 | 2026-03-27 20:56:35 | Deep Dive |
| CVE-2026-33904 | Ella Core has a Denial of Service via SCTP connection cleanup deadlock | ellanetworks | core | Medium | 6.5 | 2026-03-27 20:55:19 | Deep Dive |
| CVE-2026-33903 | Ella Core panics when processing a crafted NGAP LocationReport message | ellanetworks | core | Medium | 6.5 | 2026-03-27 20:52:37 | Deep Dive |
| CVE-2026-33283 | Ella Core panics on malformed ULNASTransport Message without a Request Type | ellanetworks | core | Medium | 6.5 | 2026-03-23 23:49:43 | Deep Dive |
| CVE-2026-33282 | Ella Core panics on malformed NGAP Location Report | ellanetworks | core | High | 7.5 | 2026-03-23 23:47:26 | Deep Dive |
| CVE-2026-33281 | Ella Core panics on invalid PDU Session IDs in NGAP messages | ellanetworks | core | Medium | 6.5 | 2026-03-23 23:46:13 | Deep Dive |
| CVE-2026-32320 | Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings | ellanetworks | core | Medium | 6.5 | 2026-03-12 21:34:50 | Deep Dive |
| CVE-2026-32319 | Ella Core: Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload | ellanetworks | core | High | 7.5 | 2026-03-12 21:33:32 | Deep Dive |