4 matches found
CVE-2026-33282
Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing a malformed NGAP LocationReport message with ue-presence-in-area-of-interest event type and omitting the optional UEPresenceInAreaOfInterestList IE. An attacker able to send crafted NGAP messages t...
CVE-2026-33282
CVE-2026-33282 affects Ella Core (private 5G core). Versions before 1.6.0 panic on malformed NGAP LocationReport when ue-presence-in-area-of-interest is used and UEPresenceInAreaOfInterestList is omitted, enabling an attacker to crash the process and disrupt service for all connected subscribers;...
GHSA-826Q-WRQ4-P23X Ella Core panics on malformed NGAP Location Report
Summary Ella Core panics when processing a malformed NGAP LocationReport message with ue-presence-in-area-of-interest event type and omitting the optional UEPresenceInAreaOfInterestList IE. Impact An attacker able to send crafted NGAP messages to Ella Core can crash the process, causing service...
PT-2026-26468
Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing a malformed NGAP LocationReport message with ue-presence-in-area-of-interest event type and omitting the optional UEPresenceInAreaOfInterestList IE. An attacker able to send crafted NGAP messages t...