Primary

Context

Ella Core NGAP Handover Failure Message Processing Panic Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Ella Core versions prior to 1.8.0. The issue arises when the application processes NGAP handover failure messages, leading to a process crash. This disruption affects all connected subscribers. The vulnerability can be exploited by causing a gNodeB to send NGAP handover failure messages to Ella Core.

Impact

Exploitation of this vulnerability causes a process panic, leading to a crash that disrupts service for all connected subscribers.

Remediation

Users can upgrade to Ella Core version 1.8.0 or later to address this vulnerability.

Added: Apr 2, 2026, 9:29 PM

Updated: Apr 2, 2026, 9:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ella Core NGAP Handover Failure Message Processing Panic Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating