Unrated severityNVD Advisory· Published Sep 25, 2025· Updated Sep 26, 2025

CVE-2025-59402

Description

Flock Safety Bravo Edge AI Compute Device BRAVO_00.00_local_20241017 accepts the default Thundercomm TurboX 6490 Firehose loader in EDL/QDL mode. This enables attackers with physical access to flash arbitrary firmware, dump partitions, and bypass bootloader and OS security controls.

Affected products

Flock Safety/Bravo Edge AI Compute Devicedescription
Flock Safety/Bravo Edge AI Compute Devicellm-fuzzy
Range: = BRAVO_00.00_local_20241017

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gainsec.com/2025/09/19/root-from-the-coop-device-3-root-shell-on-flock-safetys-bravo-compute-box/mitre
gainsec.com/wp-content/uploads/2025/09/Root-from-the-Coop-Device-3_-Root-Shell-on-Flock-Safetys-Bravo-Compute-Box-GainSec.pdfmitre
www.flocksafety.com/productsmitre
www.flocksafety.com/products/license-plate-readersmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000