Description
NULL pointer dereference vulnerability in ASR1903 in ASR Lapwing_Linux on Linux (ims_client modules) allows Pointer Manipulation.

This vulnerability is associated with program files sip/utils/src/sipuri.c.
Published: 2026-04-30
Score: 7.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a null pointer dereference in the ims_client SIP module. When the sipuri.c utility processes SIP URIs, it performs a null check but then dereferences a pointer that may be null. According to CWE‑476, this can cause the process to crash or exhibit unexpected behavior, which could lead to denial of service or other integrity impacts if an attacker can control the malformed input.

Affected Systems

This flaw affects ASR1903 devices running ASR Lapwing Linux firmware versions that include the ims_client sipuri.c code. The affected component resides in the sip/utils src. Exact firmware versions are not listed, so all current releases containing that source file are potentially vulnerable.

Risk and Exploitability

With a CVSS score of 7.4 the vulnerability is considered high severity. The EPSS score is not available, and the flaw is not yet listed in the CISA KEV catalog, indicating it may not be actively exploited at this time. The attack vector is inferred to be locally exploitable via the IMS client; an attacker would need to feed malformed SIP URIs to trigger the null dereference. Administrators should treat the risk as significant pending a vendor fix.

Generated by OpenCVE AI on May 1, 2026 at 05:14 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Obtain and deploy the vendor-released patch or firmware update that eliminates the null dereference in sipuri.c.
  • If a patch is not available immediately, restrict access to the IMS client and prevent external inputs from reaching the sip module until a fix arrives.
  • Apply general best practices: perform strict input validation on SIP URIs, limit traffic with firewall rules, and monitor for crashes or abnormal behavior that may indicate exploitation.

Generated by OpenCVE AI on May 1, 2026 at 05:14 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 05 May 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Asrmicro asr1901
Asrmicro asr1901 Firmware
Asrmicro asr1903
Asrmicro asr1903 Firmware
CPEs cpe:2.3:h:asrmicro:asr1901:-:*:*:*:*:*:*:*
cpe:2.3:h:asrmicro:asr1903:-:*:*:*:*:*:*:*
cpe:2.3:o:asrmicro:asr1901_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:asrmicro:asr1903_firmware:*:*:*:*:*:*:*:*
Vendors & Products Asrmicro asr1901
Asrmicro asr1901 Firmware
Asrmicro asr1903
Asrmicro asr1903 Firmware

Fri, 01 May 2026 08:30:00 +0000

Type Values Removed Values Added
First Time appeared Asrmicro
Asrmicro lapwing Linux
Vendors & Products Asrmicro
Asrmicro lapwing Linux

Thu, 30 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 30 Apr 2026 09:45:00 +0000

Type Values Removed Values Added
Description NULL pointer dereference vulnerability in ASR1903 in ASR Lapwing_Linux on Linux (ims_client modules) allows Pointer Manipulation. This vulnerability is associated with program files sip/utils/src/sipuri.c.
Title Deference after null check in ims_client sip
Weaknesses CWE-476
References
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L'}

Subscriptions

Asrmicro Asr1901 Asr1901 Firmware Asr1903 Asr1903 Firmware Lapwing Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: ASR

Published:

Updated: 2026-04-30T13:04:12.990Z

Reserved: 2026-04-30T07:55:02.475Z

Link: CVE-2026-42800

cve-icon Vulnrichment

Updated: 2026-04-30T13:04:10.088Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-30T10:16:02.203

Modified: 2026-05-05T02:54:21.057

Link: CVE-2026-42800

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-01T08:15:12Z

Weaknesses