CVE-2026-33904

Name of the Vulnerable Software and Affected Versions Ella Core versions prior to 1.7.0

Description A deadlock in the AMF's SCTP notification handler can cause the entire AMF control plane to hang until the process is restarted. An attacker with access to the N2 interface can cause Ella Core to hang, resulting in a denial of service for all subscribers. The issue relates to the handling of SCTP notifications and the presence of stale entries.

Recommendations Update to version 1.7.0 or later. This version adds deferred Radio cleanup in the serveConn SCTP server, ensuring every connection exit path removes the radio, and removes the stale-entry scan from SCTP Notification handling.