Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ellanetworks — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting ellanetworks. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ellanetworks provides network security solutions with a focus on unified threat management and network access control. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and authentication flaws. The company has addressed multiple security issues in firmware and web interfaces, with 11 CVEs documented to date. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in their software highlights the importance of timely patching and hardening of their systems in enterprise environments.

Found 11 results / 11Clear Filters
Top products by ellanetworks: core
CVE IDTitleCVSSSeverityPublished
CVE-2026-34762 Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber — coreCWE-20 2.7 Low2026-04-02
CVE-2026-34761 Ella Core Panics Upon NGAP handover failure — coreCWE-476 5.8 Medium2026-04-02
CVE-2026-33907 Ella Core Panics during NAS Authentication Response/Failure with missing IEs — coreCWE-476 6.5 Medium2026-03-27
CVE-2026-33906 Ella Core has Privilege Escalation via Database Restore by NetworkManager role — coreCWE-269 7.2 High2026-03-27
CVE-2026-33904 Ella Core has a Denial of Service via SCTP connection cleanup deadlock — coreCWE-833 6.5 Medium2026-03-27
CVE-2026-33903 Ella Core panics when processing a crafted NGAP LocationReport message — coreCWE-476 6.5 Medium2026-03-27
CVE-2026-33283 Ella Core panics on malformed ULNASTransport Message without a Request Type — coreCWE-476 6.5 Medium2026-03-23
CVE-2026-33282 Ella Core panics on malformed NGAP Location Report — coreCWE-476 7.5 High2026-03-23
CVE-2026-33281 Ella Core panics on invalid PDU Session IDs in NGAP messages — coreCWE-129 6.5 Medium2026-03-23
CVE-2026-32320 Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings — coreCWE-125 6.5 Medium2026-03-12
CVE-2026-32319 Ella Core: Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload — coreCWE-125 7.5 High2026-03-12

This page lists every published CVE security advisory associated with ellanetworks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.