Affected Products

Vendor / product matrix with CVE counts sourced from the CPE catalog.

Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
asrmicro
1820014.8%CRITICAL

Related CVEs

20
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2026-42800NULL pointer dereference vulnerability in ASR1903 in ASR Lapwing_Linux on Linux (ims_client modules) allows Pointer Manipulation. This vulnerability is associated with program files sip/utils/src/sipuri.c.MEDIUM5.314.6%Apr 30, 2026
CVE-2026-42799Out-of-bounds read vulnerability in ASR Kestrel (nr_fw modules) allows Overflow Buffers. This vulnerability is associated with program files Code/Nr/nr_fw/RA/src/NrPwrCtrl.C. This issue affects Kestrel: before 2026/02/10.CRITICAL9.819.4%Apr 30, 2026
CVE-2025-49483Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in tr069 modules allows Resource Leak Exposure. This vulnerability is associated with program files tr069/tr069_uci.c. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.415.2%Jul 1, 2025
CVE-2025-49482Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in tr069 modules allows Resource Leak Exposure. This vulnerability is associated with program files tr069/tr098.c. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.415.2%Jul 1, 2025
CVE-2025-49481Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in router modules allows Resource Leak Exposure. This vulnerability is associated with program files router/phonebook/pbwork-queue.C. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2025-49480Out-of-bounds access in ASR180x 、ASR190x in lte-telephony, This vulnerability is associated with program files apps/lzma/src/LzmaEnc.c. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.CRITICAL9.114.8%Jul 1, 2025
CVE-2025-49492Out-of-bounds write in ASR180x in lte-telephony, May cause a buffer underrun.  This vulnerability is associated with program files apps/atcmd_server/src/dev_api.C. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.CRITICAL9.816.2%Jul 1, 2025
CVE-2025-49491Improper Resource Shutdown or Release vulnerability in ASR Falcon_Linux、Kestrel、Lapwing_Linux on Linux (traffic_stat modules) allows Resource Leak Exposure. This vulnerability is associated with program files traffic_stat/traffic_service/traffic_service.C. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2025-49488Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in router components allows Resource Leak Exposure. This vulnerability is associated with program files router/phonebook/pb.c. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2025-49490Resource leak vulnerability in ASR180x in router allows Resource Leak Exposure. This vulnerability is associated with program files router/sms/sms.c. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2025-49489Improper Resource Shutdown or Release vulnerability in ASR Falcon_Linux、Kestrel、Lapwing_Linux on Linux (con_mgr components) allows Resource Leak Exposure. This vulnerability is associated with program files con_mgr/dialer_task.C. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2025-5072Resource leak vulnerability in ASR180x、ASR190x in con_mgr allows Resource Leak Exposure.This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.MEDIUM5.314.2%Jul 1, 2025
CVE-2024-32634In huge memory get unmapped area check, code can never be reached because of a logical contradiction. MEDIUM6.1Apr 16, 2024
CVE-2024-32633An unsigned value can never be negative, so eMMC full disk test will always evaluate the same way.MEDIUM4.0Apr 16, 2024
CVE-2024-32632A value in ATCMD will be misinterpreted by printf, causing incorrect output and possibly out-of-bounds memory accessMEDIUM6.6Apr 16, 2024
CVE-2024-32631Out-of-Bounds read in ciCCIOTOPT in ASR180X will cause incorrect computations.HIGH8.0Apr 16, 2024
CVE-2024-32625In OffloadAMRWriter, a scalar field is not initialized so will contain an arbitrary value left over from earlier computationsMEDIUM5.8Apr 16, 2024
CVE-2023-49701Memory Corruption in SIM management while USIMPhase2init CRITICAL9.8Nov 30, 2023
CVE-2023-49700Security best practices violations, a string operation in Streamingmedia will write past the end of fixed-size destination buffer if the source buffer is too large. HIGH7.5Nov 30, 2023
CVE-2023-49699Memory Corruption in IMS while calling VoLTE Streamingmedia Interface HIGH7.8Nov 30, 2023