diff --git a/2022/38xxx/CVE-2022-38625.json b/2022/38xxx/CVE-2022-38625.json
index 20cd2f00bf7..b7a3b05bce1 100644
--- a/2022/38xxx/CVE-2022-38625.json
+++ b/2022/38xxx/CVE-2022-38625.json
@@ -34,7 +34,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. This vulnerability allows authenticated attackers to create and upload their own custom-built firmware and inject malicious code."
+                "value": "** DISPUTED ** Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. This vulnerability allows authenticated attackers to create and upload their own custom-built firmware and inject malicious code. NOTE: the vendor's position is that this is a design choice, not a vulnerability."
             }
         ]
     },