PT-2026-29708 · Ella Core · Ella Core
Offset
·
Published
2026-04-01
·
Updated
2026-04-03
·
CVE-2026-34761
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Ella Core versions prior to 1.8.0
Description
Ella Core experiences a panic when processing a NGAP handover failure message. An attacker capable of triggering a gNodeB to send NGAP handover failure messages to Ella Core can cause a process crash, leading to service disruption for all connected subscribers.
Recommendations
Update to version 1.8.0 or later.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ella Core