What is the CVSS score of CVE-2026-44475?

CVE-2026-44475 has a CVSS 3.1 base score of 6.1 (Medium). CVSS vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L. EPSS exploitation probability: 0.0%.

Is there a patch available for CVE-2026-44475?

Yes, a patch is available for CVE-2026-44475. Update the affected software to the latest version immediately.

Ella Core CVE-2026-44475

EUVD-2026-32562 MEDIUM

Improperly Implemented Security Check for Standard (CWE-358)

2026-05-11 https://github.com/ellanetworks/core

GHSA-pwfh-mqp3-pqwj

Information Disclosure

6.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

Low

Availability

Low

Lifecycle Timeline

Source Code Evidence Fetched

May 11, 2026 - 15:47 vuln.today

Analysis Generated

May 11, 2026 - 15:47 vuln.today

CVE Published

May 11, 2026 - 15:29 nvd

MEDIUM 6.1

DescriptionNVD

Summary

Ella Core does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored values. A malicious gNB can overwrite Ella Core's stored UE security capabilities for any UE with arbitrary values by sending a single crafted PathSwitchRequest.

Impact

A gNB can corrupt Ella Core's stored UE security capabilities for a target UE.

Fix

The PathSwitchRequest handler now compares the received UE Security Capabilities against Ella Core's locally stored values, preserves the stored values on mismatch, returns them in the PathSwitchRequestAcknowledge, and logs the event.

AnalysisAI

Malicious gNB can corrupt Ella Core's stored UE security capabilities by sending a crafted NGAP PathSwitchRequest message without validation, allowing integrity compromise of security parameters for any user equipment. The vulnerability affects Ella Core versions prior to 1.10.0 and requires access to the NGAP interface (adjacent network), but can degrade security posture by enabling capability downgrades or feature injection. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-44475 vulnerability details – vuln.today

Back

Ella Core CVE-2026-44475

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

Summary

Impact

Fix

AnalysisAI

Full analysis requires sign-in

Share

External POC / Exploit Code