Resource Leak Vulnerability in ASR180x and ASR190x by ASR Micro
CVE-2025-5072

5.4MEDIUM

Key Information:

Vendor: Asr
Status: Falcon Linux、kestrel、lapwing Linux
Vendor: CVE Published:; 1 July 2025

What is CVE-2025-5072?

The ASR180x and ASR190x devices developed by ASR Micro exhibit a resource leak vulnerability within the con_mgr module. This issue can lead to resource leak exposure affecting various Linux-based environments, specifically impacting Falcon_Linux, Kestrel, and Lapwing_Linux versions prior to v1536. Proper management of system resources is critical in maintaining the integrity and performance of the network. Users of the affected products should prioritize updates and patches to mitigate risks associated with this vulnerability.

Affected Version(s)

Falcon_Linux、Kestrel、Lapwing_Linux Linux 0

References

https://www.asrmicro.com/en/goods/psirt?cid=40

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 1, 2025
Vulnerability Reserved
May 22, 2025

Asr

What is CVE-2025-5072?

Affected Version(s)

References

CVSS V3.1

Timeline