Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ella Core has Privilege Escalation via Database Restore by NetworkManager role
Vulnerability Description
Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, the NetworkManager role was granted backup and restore permission. The restore endpoint accepted any valid SQLite file without verifying its contents. A NetworkManager could replace the production database with a tampered copy to escalate to Admin, gaining access to user management, audit logs, debug endpoints, and operator identity configuration that the role was explicitly denied. In version 1.7.0, backup and restore permissions have been removed from the NetworkManager role.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
Ella Core 安全漏洞
Vulnerability Description
Ella Core是Ella Networks开源的一个用于私有网络的5G核心网解决方案。 Ella Core 1.7.0之前版本存在安全漏洞,该漏洞源于NetworkManager角色被授予备份和还原权限,且还原端点未验证SQLite文件内容,可能导致NetworkManager通过替换生产数据库提升至管理员权限,获得用户管理、审计日志、调试端点和操作员身份配置的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A