CVE-2026-34761

Published: Apr 02, 2026 Last Modified: Apr 02, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,8

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: high

User Interaction: none

Scope: changed

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

Ella Core is a 5G core designed for private networks. Prior to version 1.8.0, Ella Core panics when processing a NGAP handover failure message. An attacker able to cause a gNodeB to send NGAP handover failure messages to Ella Core can crash the process, causing service disruption for all connected subscribers. This issue has been patched in version 1.8.0.

476

NULL Pointer Dereference

Stable

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability Integrity Confidentiality

Potential Impacts:

Dos: Crash, Exit, Or Restart Execute Unauthorized Code Or Commands Read Memory Modify Memory

Applicable Platforms

Languages: C, C#, C++, Go, Java

Likelihood of Exploit: Medium

View CWE Details

https://github.com/ellanetworks/core/releases/tag/v1.8.0

https://github.com/ellanetworks/core/security/advisories/GH…

https://github.com/ellanetworks/core/security/advisories/GHSA-6gm8-3g4h-w82m

CVE-2026-34761

Description

NULL Pointer Dereference

Common Consequences

Applicable Platforms

Iscriviti alla newsletter