GHSA-m9pm-w3gv-c68f

Suggest an improvement
Source
https://github.com/advisories/GHSA-m9pm-w3gv-c68f
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-m9pm-w3gv-c68f/GHSA-m9pm-w3gv-c68f.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-m9pm-w3gv-c68f
Aliases
Published
2026-03-12T20:33:22Z
Modified
2026-03-23T04:56:03.816661699Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload
Details

Summary

Ella Core panics when processing a malformed integrity protected NGAP/NAS message with a length under 7 bytes.

Impact

An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all connected subscribers. No authentication is required.

Fix

Added length verification to NAS message handling.

Database specific 
{
    "github_reviewed": true,
    "github_reviewed_at": "2026-03-12T20:33:22Z",
    "cwe_ids": [
        "CWE-125"
    ],
    "nvd_published_at": "2026-03-13T19:54:42Z",
    "severity": "HIGH"
}
References

Affected packages

Go / github.com/ellanetworks/core

Package

Name
github.com/ellanetworks/core
View open source insights on deps.dev
Purl
pkg:golang/github.com/ellanetworks/core

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.5.1

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-m9pm-w3gv-c68f/GHSA-m9pm-w3gv-c68f.json"