WEST BLOOMFIELD SCHOOL DISTRICT All students will be: • Contributors • Critical thinkers • Communicators • Collaborators …empowering each for life ahead.
The mission of Charlotte-Mecklenburg Schools is to create an innovative, inclusive, student-centered environment that supports the development of independent learners. The vision of Charlotte-Mecklenburg Schools is to lead the community in educational excellence, inspiring intellectual curiosity, creativity, and achievement so that all students reach their full potential. About CMS Charlotte-Mecklenburg Schools (CMS) provides academic instruction, rigor and support each school day to more than 141,000 students in kindergarten through 12th grade in 186 schools throughout the cities and towns of Mecklenburg County. CMS believes setting high standards for all students creates a greater opportunity for future success – in our communities, within the region and across our diverse and global society. Each day, CMS students are prepared to be leaders in a technologically savvy and globally competitive world. CMS is proud of its diverse mix of students who represent 160 different countries and various cultural and ethnic backgrounds. CMS offers an extensive range of magnet programs in 38 of its schools to nurture the talents of students who have interest and ability in specific areas. CMS also educates, supports, and meets the needs of students with learning and physical disabilities. CMS is one of the largest employers in Mecklenburg County with approximately 18,000 teachers, support staff and administrators. CMS is fortunate to have tremendous support from Charlotte’s corporate, faith and business communities and more than 90,000 mentors and volunteers that support learning and instruction in CMS classrooms. The public school system in Charlotte-Mecklenburg has a rich and intricate history. Built upon the efforts of many individuals who firmly believed in the importance of education to this community, public schools in this area have had a tremendous impact on the growth and economy of the region – as well as the thousands of individuals it has served.
Security & Compliance Standards Overview
No incidents recorded for West Bloomfield School District in 2025.
No incidents recorded for Charlotte-Mecklenburg Schools in 2025.
West Bloomfield School District cyber incidents detection timeline including parent company and subsidiaries
Charlotte-Mecklenburg Schools cyber incidents detection timeline including parent company and subsidiaries
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
