ICSA-25-317-04 · Published 2025-11-13 · View on CISA ICS-CERT ↗

Brightpick Mission Control / Internal Logic Control

CVSS 8.6 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could result in the exposure of sensitive information and the manipulation of critical functions by an attacker.

CVEs (3)

CVE-2025-64307 CVE-2025-64308 CVE-2025-64309

Remediations

Brightpick AI has not responded to requests to work with CISA to mitigate these vulnerabilities. Users of the affected products are encouraged to contact Brightpick AI for additional information.

Affected Vendors

Brightpick AI

Affected Products (1)

Brightpick AI · Brightpick Mission Control / Internal Logic Control vers:all/*

Affected Sectors

Commercial Facilities, Critical Manufacturing, Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more