Mission Control CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-64309	1 Brightpick Ai	1 Mission Control	2025-11-15	8.6 High
Brightpick Mission Control discloses device telemetry, configuration, and credential information via WebSocket traffic to unauthenticated users when they connect to a specific URL. The unauthenticated URL can be discovered through basic network scanning techniques.
CVE-2025-64308	1 Brightpick Ai	1 Mission Control	2025-11-15	7.5 High
The Brightpick Mission Control web application exposes hardcoded credentials in its client-side JavaScript bundle.

Page 1 of 1.