CVE-2025-49492 | THREATINT

Description

Out-of-bounds write in ASR180x in lte-telephony, May cause a buffer underrun. This vulnerability is associated with program files apps/atcmd_server/src/dev_api.C. This issue affects Falcon_Linux、Kestrel、Lapwing_Linux: before v1536.

PUBLISHED Reserved 2025-06-06 | Published 2025-07-01 | Updated 2025-07-01 | Assigner ASR

HIGH: 7.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Problem types

CWE-787 Out-of-bounds Write

Product status

Default status

unaffected

Any version before v1536

affected

References

www.asrmicro.com/en/goods/psirt?cid=40

cve.org (CVE-2025-49492)

nvd.nist.gov (CVE-2025-49492)

Download JSON