Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings
Vulnerability Description
Ella Core is a 5G core designed for private networks. Prior to 1.5.1, Ella Core panics when processing a PathSwitchRequest containing UE Security Capabilities with zero-length NR encryption or integrity protection algorithm bitstrings, resulting in a denial of service. An attacker able to send crafted NGAP messages to Ella Core can crash the process, causing service disruption for all connected subscribers. No authentication is required. This vulnerability is fixed in 1.5.1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
跨界内存读
Vulnerability Title
Ella Core 缓冲区错误漏洞
Vulnerability Description
Ella Core是Ella Networks开源的一个用于私有网络的5G核心网解决方案。 Ella Core 1.5.1之前版本存在缓冲区错误漏洞,该漏洞源于处理包含零长度NR加密或完整性保护算法位串的PathSwitchRequest时发生内核崩溃,可能导致攻击者发送特制NGAP消息使进程崩溃,造成服务中断。
CVSS Information
N/A
Vulnerability Type
N/A