CVE-2025-49488

EUVD-2025-19607
Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in router 

components

 allows Resource Leak Exposure. This vulnerability is associated with program files router/phonebook/pb.c.

This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
ASRCNA
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
asrmicrofalcon_linux
𝑥
< 1536
asrmicrokestrel
𝑥
< 1536
asrmicrolapwing_linux
𝑥
< 1536
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.asrmicro.com/en/goods/psirt?cid=40