CVE-2025-47822 | THREATINT

Description

Flock Safety LPR (License Plate Reader) devices with firmware through 2.2 have an on-chip debug interface with improper access control.

PUBLISHED Reserved 2025-05-10 | Published 2025-06-27 | Updated 2025-09-02 | Assigner mitre

MEDIUM: 6.4CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-1191 On-Chip Debug and Test Interface With Improper Access Control

Product status

Default status

unaffected

Any version

affected

References

www.flocksafety.com/...d-license-plate-reader-security-alert

gainsec.com/...-research-on-flock-safety-anti-crime-systems/

gainsec.com/...alcon-sparrow-automated-license-plate-reader/

gainsec.com/...s/2025/06/flock-safety-researcher-summary.pdf

cve.org (CVE-2025-47822)

nvd.nist.gov (CVE-2025-47822)

Download JSON

help @ threatint.eu