Exploitable 5G Core Vulnerability in Ella Core by Ella Networks
CVE-2026-44473

7.1HIGH

Key Information:

Vendor: Ellanetworks
Status: Core
Vendor: CVE Published:; 27 May 2026

🔔 Create Ellanetworks Vulnerability Alert

What is CVE-2026-44473?

Ella Core, a 5G core solution intended for private networks, has a vulnerability that allows an attacker to exploit the NG Setup procedure. Specifically, radios can send forged PDUSessionResourceSetupResponse messages that carry an arbitrary UE's AMF-UE-NGAP-ID. Ella Core lacks necessary verification checks for messages received on the specific SCTP association linked to that UE's logical NG-connection, enabling an attacker to establish a GTP tunnel to the compromised radio. This issue has been resolved in Ella Core version 1.10.0.

Affected Version(s)

core < 1.10.0

References

https://github.com/ellanetworks/core/security/advisories/...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44473 Data

JSON