PT-2025-27521 · Asr180X+3 · Asr180X+4
Published
2025-07-01
·
Updated
2025-07-01
·
CVE-2025-49483
CVSS v2.0
5.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
ASR180x versions prior to v1536
ASR190x versions prior to v1536
Falcon Linux versions prior to v1536
Kestrel versions prior to v1536
Lapwing Linux versions prior to v1536
Description:
The issue is related to an Improper Resource Shutdown or Release, which allows Resource Leak Exposure. This is associated with program files tr069/tr069 uci.c in the tr069 modules.
Recommendations:
For ASR180x versions prior to v1536, update to version v1536 or later.
For ASR190x versions prior to v1536, update to version v1536 or later.
For Falcon Linux versions prior to v1536, update to version v1536 or later.
For Kestrel versions prior to v1536, update to version v1536 or later.
For Lapwing Linux versions prior to v1536, update to version v1536 or later.
As a temporary workaround, consider restricting access to the tr069 modules until a patch is available.
Fix
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Asr180X
Asr190X
Falcon Linux
Kestrel
Lapwing Linux