Security Advisory

CVE-2025-64309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-14 23:41:18

Last updated 2025-11-17 18:54:22

Assigner icscert

State PUBLISHED

Description

Brightpick Mission Control discloses device telemetry, configuration, and credential information via WebSocket traffic to unauthenticated users when they connect to a specific URL. The unauthenticated URL can be discovered through basic network scanning techniques.

← Browse all CVEs View on cve.org ↗