Publish Advisories

GHSA-6gm8-3g4h-w82m
GHSA-xw45-cc32-442f

Author: advisory-database[bot]

advisories/github-reviewed/2026/04/GHSA-6gm8-3g4h-w82m/GHSA-6gm8-3g4h-w82m.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-6gm8-3g4h-w82m",
+  "modified": "2026-04-01T22:59:13Z",
+  "published": "2026-04-01T22:59:12Z",
+  "aliases": [
+    "CVE-2026-34761"
+  ],
+  "summary": "Ella Core Panics Upon NGAP handover failure",
+  "details": "## Summary\n\nElla Core panics when processing a NGAP handover failure message.\n\n## Impact\n\nIf an attacker can force a gNodeB to send NGAP handover failure messages to Ella Core, the process will crash, thereby disrupting service for all connected subscribers.\n\n## Fix \n\nImprove guards in NGAP handover handlers.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Go",
+        "name": "github.com/ellanetworks/core"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "1.8.0"
+            }
+          ]
+        }
+      ],
+      "database_specific": {
+        "last_known_affected_version_range": "<= 1.7.0"
+      }
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/ellanetworks/core/security/advisories/GHSA-6gm8-3g4h-w82m"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/ellanetworks/core"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-476"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-01T22:59:12Z",
+    "nvd_published_at": null
+  }
+}

advisories/github-reviewed/2026/04/GHSA-xw45-cc32-442f/GHSA-xw45-cc32-442f.json

@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-xw45-cc32-442f",
+  "modified": "2026-04-01T22:59:50Z",
+  "published": "2026-04-01T22:59:50Z",
+  "aliases": [
+    "CVE-2026-34762"
+  ],
+  "summary": "Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber",
+  "details": "## Summary\n\nThe `PUT /api/v1/subscriber/{imsi}` API accepts an IMSI identifier from both the URL path and the JSON request body but never verifies they match. This allows an authenticated NetworkManager to modify any subscriber's policy while the audit trail records a fabricated or unrelated subscriber IMSI.\n\n## Impact\n\nA NetworkManager or Admin can modify any subscriber's QoS policy (potentially degrading service or altering traffic routing) while the audit log attributes the change to a non-existent or unrelated subscriber. Post-incident forensic searches for the affected subscriber's IMSI would find no matching audit entries.\n\n## Fix\n\nRemove the IMSI as a body param and use the path param as a single source of truth.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Go",
+        "name": "github.com/ellanetworks/core"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "1.8.0"
+            }
+          ]
+        }
+      ],
+      "database_specific": {
+        "last_known_affected_version_range": "<= 1.7.0"
+      }
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/ellanetworks/core/security/advisories/GHSA-xw45-cc32-442f"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/ellanetworks/core/commit/7f64b7a7c7a22cb9c05ac2c1c3a0cf0eaefac3e5"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/ellanetworks/core"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-20"
+    ],
+    "severity": "LOW",
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-01T22:59:50Z",
+    "nvd_published_at": null
+  }
+}