CVE-2025-47819
Published: 27 June 2025
Summary
CVE-2025-47819 is a medium-severity On-Chip Debug and Test Interface With Improper Access Control (CWE-1191) vulnerability in Flocksafety Gunshot Detection Firmware. Its CVSS base score is 6.4 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 31.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-19566
Vulnerability details
Flock Safety Gunshot Detection devices before 1.3 have an on-chip debug interface with improper access control.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Improper access control on the on-chip debug interface enables physical attackers to connect via UART, gaining boot logs for system information discovery (T1082), a debug/root shell for Unix shell execution (T1059.004), and privilege escalation via exploitation of the interface (T1068).
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.