Skip to main content

Flock Safety

4 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-59407 CRITICAL POC Act Now

Hardcoded cryptographic key in Flock Safety DetectionProcessing app for ANPR. PoC available.

Information Disclosure Java Flock Safety Android
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-59406 MEDIUM POC This Month

The Flock Safety Pisco com.flocksafety.android.pisco application 6.21.11 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) has a cleartext Auth0 client secret in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover this OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVSS 3.1
6.2
EPSS
0.0%
CVE-2025-59405 HIGH POC This Week

The Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) contains a cleartext DataDog API key within in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover the OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-59403 CRITICAL POC Act Now

Missing authentication in Flock Safety Collins Android app for ANPR cameras. EPSS 2.7%. PoC available.

Denial Of Service RCE Information Disclosure Flock Safety Android
NVD
CVSS 3.1
9.8
EPSS
2.7%
CVE-2025-59407
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

Hardcoded cryptographic key in Flock Safety DetectionProcessing app for ANPR. PoC available.

Information Disclosure Java Flock Safety +1
NVD
CVE-2025-59406
EPSS 0% CVSS 6.2
MEDIUM POC This Month

The Flock Safety Pisco com.flocksafety.android.pisco application 6.21.11 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) has a cleartext Auth0 client secret in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover this OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVE-2025-59405
EPSS 0% CVSS 7.5
HIGH POC This Week

The Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android (installed on Falcon and Sparrow License Plate Readers and Bravo Edge AI Compute Devices) contains a cleartext DataDog API key within in its codebase. Because application binaries can be trivially decompiled or inspected, attackers can recover the OAuth secret without special privileges. This secret is intended to remain confidential and should never be embedded directly in client-side software.

Information Disclosure Flock Safety Android
NVD
CVE-2025-59403
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

Missing authentication in Flock Safety Collins Android app for ANPR cameras. EPSS 2.7%. PoC available.

Denial Of Service RCE Information Disclosure +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy