CVE-2025-59407

The CVE-2025-59407 entry affects Flock Safety DetectionProcessing for Android (version 6.35.33) on Falcon/Sparrow LPRs and Bravo Edge devices. The code bundles a Java Keystore (flock_rye.bks) with a hardcoded password (flockhibiki17); the keystore contains a private key, enabling potential privat...

CVE-2025-59403

The Flock Safety Android Collins application aka com.flocksafety.android.collins 6.35.31 for Android lacks authentication. It is responsible for the camera feed on Falcon, Sparrow, and Bravo devices, but exposes administrative API endpoints on port 8080 without authentication. Endpoints include b...

CVE-2025-59407

The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...

CVE-2025-59405

The Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices contains a cleartext DataDog API key within in its codebase. Because application binaries can be trivially decompil...

PT-2025-40413

Name of the Vulnerable Software and Affected Versions Flock Safety DetectionProcessing application version 6.35.33 Description The Flock Safety DetectionProcessing application for Android version 6.35.33, used on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices, includes...

CVE-2025-59403

The Flock Safety Android Collins app (com.flocksafety.android.collins) v6.35.31 for Android exposes unauthenticated administrative API endpoints on port 8080 (e.g., /reboot, /logs, /crashpack, /adb/enable) that control camera feed on Falcon, Sparrow, and Bravo devices. Root cause is lack of authe...

Flock Safety Pisco 安全漏洞

Flock Safety Pisco is a backend authentication module from Flock Safety USA. A security vulnerability exists in Flock Safety Pisco version 6.21.11, which stems from the inclusion of plaintext Auth0 client keys in the codebase, which could lead to key disclosure...

CVE-2025-59405

The Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices contains a cleartext DataDog API key within in its codebase. Because application binaries can be trivially decompil...

Flock Safety Falcon 安全漏洞

Flock Safety Falcon is a series of license plate recognition cameras from Flock Safety USA. A security vulnerability exists in Flock Safety Falcon that stems from the storage of plaintext exploitation Wi-Fi credentials in the production firmware...

CVE-2025-59406

The Flock Safety Pisco com.flocksafety.android.pisco application 6.21.11 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices has a cleartext Auth0 client secret in its codebase. Because application binaries can be trivially decompiled or inspected,...

PT-2025-40414

Name of the Vulnerable Software and Affected Versions Flock Safety Falcon and Sparrow License Plate Readers version OPM1.171019.026 Description The devices ship with development Wi-Fi credentials specifically, test flck stored in cleartext within the production firmware. This could allow...

Flock Safety Peripheral 安全漏洞

Flock Safety Peripheral is a device edge software from Flock Safety USA. A security vulnerability exists in Flock Safety Peripheral version 7.38.3, which stems from the inclusion of a plaintext DataDog API key in the code base, which could lead to key disclosure...

CVE-2025-59407

The Flock Safety DetectionProcessing com.flocksafety.android.objects application 6.35.33 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices bundles a Java Keystore flockrye.bks along with its hardcoded password flockhibiki17 in its code. The keysto...

Flock Safety DetectionProcessing 安全漏洞

Flock Safety DetectionProcessing is an algorithmic execution module from Flock Safety USA. A security vulnerability exists in Flock Safety DetectionProcessing version 6.35.33, which stems from a hard-coded keystore password in the code that could lead to private key disclosure...

CVE-2025-59409

CVE-2025-59409 affects Flock Safety Falcon and Sparrow License Plate Readers (OPM1.171019.026). Root cause: development Wi‑Fi credentials stored in cleartext within production firmware, e.g., credentials like test_flck/test_flck. Impact: potential unauthorized device access. Public sources (PTSec...

Flock Safety Android Collins 安全漏洞

Flock Safety Android Collins is an application module for managing cameras from Flock Safety USA. A security vulnerability exists in Flock Safety Android Collins version 6.35.31, which stems from a lack of authentication and could lead to denial of service, information disclosure, and remote code...

CVE-2025-59406

The CVE-2025-59406 entry concerns the Flock Safety Pisco Android app (v6.21.11) installed on Falcon/Sparrow License Plate Readers and Bravo Edge AI Compute Devices. The root cause is a cleartext Auth0 client secret embedded in the client-side codebase, which can be extracted by decompiling or ins...

CVE-2025-59406

The Flock Safety Pisco com.flocksafety.android.pisco application 6.21.11 for Android installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices has a cleartext Auth0 client secret in its codebase. Because application binaries can be trivially decompiled or inspected,...

SUSE CVE-2022-50460

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifsflock If not flock, before return -ENOLCK, should free the xid, otherwise, the xid will be leaked...

CVE-2022-50460

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifsflock If not flock, before return -ENOLCK, should free the xid, otherwise, the xid will be leaked...