CVE-2025-32409

Name of the Vulnerable Software and Affected Versions Ratta SuperNote A6 X2 Nomad versions prior to December 2024

Description The issue allows remote code execution because an arbitrary firmware image, signed with debug keys, can be sent to TCP port 60002. This is a consequence of both directory traversal and unintended handling of concurrency. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited. Technical details include the use of TCP port 60002 and the vulnerability of the firmware image update process due to directory traversal and concurrency issues.

Recommendations For Ratta SuperNote A6 X2 Nomad versions prior to December 2024, consider disabling access to TCP port 60002 as a temporary workaround until a patch is available. Restrict the handling of firmware images signed with debug keys to minimize the risk of exploitation. Avoid using the device until a fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.