PT-2025-27520 · Asr180X+3 · Asr180X+4
Published
2025-07-01
·
Updated
2025-07-01
·
CVE-2025-49482
CVSS v2.0
5.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
ASR180x versions prior to v1536
ASR190x versions prior to v1536
Description:
The issue is related to an Improper Resource Shutdown or Release, which can lead to Resource Leak Exposure. This problem is associated with the tr069 modules, specifically the program files tr069/tr098.c. The affected products include Falcon Linux, Kestrel, and Lapwing Linux.
Recommendations:
For ASR180x versions prior to v1536, update to version v1536 or later to resolve the issue.
For ASR190x versions prior to v1536, update to version v1536 or later to resolve the issue.
As a temporary workaround, consider restricting access to the tr069 modules until a patch is available.
Fix
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Asr180X
Asr190X
Falcon Linux
Kestrel
Lapwing Linux