How is CVE-2026-44473 exploited?

Network reachability (info): The attacker must be on an adjacent network segment (such as a LAN or radio-access network) and must have completed a valid NG Setup with the target Ella Core instance. Authentication (not-required): No credentials are required beyond possessing a valid NG Setup association, which any enrolled radio can establish. Victim interaction (not-required): The UE whose session is hijacked does not need to take any action; exploitation is fully passive from the victim's perspective. Attack complexity (info): The exploit is reliable and condition-free once the attacker has an NG Setup association; no race conditions or special memory-layout knowledge are needed.

What is the impact of CVE-2026-44473?

Reads downlink traffic destined for the targeted UE by redirecting the GTP tunnel to an attacker-controlled radio, exposing unencrypted or weakly encrypted application-layer data. Disrupts the targeted UE's active data session, causing loss of connectivity for the duration of the hijack. Enables the attacker to act as a downlink man-in-the-middle for the affected UE, potentially injecting or dropping packets in that session.

Back to search

HIGHCVE-2026-44473Published 2026-05-27Modified 2026-05-28CNA GitHub_M

CVE-2026-44473: Ella Core: UE Downlink Redirection via Forged PDUSessionResourceSetupResponse

Ella Core is a 5G core designed for private networks. Prior to 1.10.0, a radio with a valid NG Setup can send a forged PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID. Ella Core does not verify the message arrived on the SCTP association bound to that UE's logical NG-connection, then creates a GTP tunnel towards that radio. This vulnerability is fixed in 1.10.0.

HarborGuard Analysis

HarborGuard analysis

Synopsis

This is an authentication bypass and session-hijacking flaw in Ella Core, a 5G core network implementation designed for private networks. An attacker operating on the same adjacent network (LAN or equivalent radio-access segment) who has completed a valid NG Setup can forge a PDUSessionResourceSetupResponse carrying any UE's AMF-UE-NGAP-ID; Ella Core fails to verify that the message arrived on the correct SCTP association for that UE, and so accepts it. Successful exploitation lets the attacker redirect a victim UE's downlink GTP tunnel to a radio they control, exposing the UE's network traffic and disrupting that UE's connectivity. HarborGuard is tracking this advisory and will make a patched-image rebuild available the moment a fix version is published upstream.

HarborGuard Coverage

Detection

Detection of CVE-2026-44473 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images, including custom-built images that package Ella Core or bundle it as a dependency.

Available

Triage

HarborGuard surfaces CVE-2026-44473 with its CVSS v3.1 score of 7.1 (HIGH) and weights it against each environment's compliance policy, then routes the finding to the appropriate team inbox within the affected customer organization.

Available

Patch

No fix version has been published for CVE-2026-44473 yet. HarborGuard re-evaluates the advisory on every ingest cycle; once an upstream fix is released, a patched-image rebuild becomes available automatically, and customers with auto-remediation enabled receive a rebuilt image, a regression-test run, and a PR opened against affected workloads.

Pending upstream

Exploit Conditions

Network reachabilityDetail
The attacker must be on an adjacent network segment (such as a LAN or radio-access network) and must have completed a valid NG Setup with the target Ella Core instance.
AuthenticationNot required
No credentials are required beyond possessing a valid NG Setup association, which any enrolled radio can establish.
Victim interactionNot required
The UE whose session is hijacked does not need to take any action; exploitation is fully passive from the victim's perspective.
Attack complexityDetail
The exploit is reliable and condition-free once the attacker has an NG Setup association; no race conditions or special memory-layout knowledge are needed.

Blast Radius

Reads downlink traffic destined for the targeted UE by redirecting the GTP tunnel to an attacker-controlled radio, exposing unencrypted or weakly encrypted application-layer data.
Disrupts the targeted UE's active data session, causing loss of connectivity for the duration of the hijack.
Enables the attacker to act as a downlink man-in-the-middle for the affected UE, potentially injecting or dropping packets in that session.

How HarborGuard Handles This

Available on HarborGuard: CVE-2026-44473 is matched against all images in connected registries and CI pipelines, including custom images that ship Ella Core. Because no upstream fix version exists yet, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment ellanetworks/core releases a fix. In the interim, compensating controls available to customers include applying network policy to restrict which sources can reach the NGAP/SCTP listener (limiting who can complete an NG Setup), segmenting the radio-access network to reduce the pool of hosts that can reach the AMF interface, and monitoring SCTP association logs for unexpected PDUSessionResourceSetupResponse messages referencing UE IDs not bound to the sending association. For customers who opt into auto-remediation, the rebuild, regression-test run, and PR against affected workloads will be triggered immediately upon upstream fix publication.

See how HarborGuard automates this

CVSS v3.1: 7.1
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

ellanetworks / core
< 1.10.0

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

References

https://github.com/ellanetworks/core/security/advisories/GHSA-qfxw-v8qx-vj3v