← Back to CVEs
CVE-2024-8528
N/ADescription
Reflected XSS using a specific URL in Automated Logic WebCTRL and Carrier i-VU can allow delivery of malicious payload due to a specific GET parameter not being sanitized.
CVE Details
CVSS v3.1 ScoreN/A
Published11/19/2025
Last Modified11/19/2025
Sourcenvd
Honeypot Sightings0
Weaknesses (CWE)
CWE-79
References
https://www.corporate.carrier.com/product-security/advisories-resources/(productsecurity@carrier.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.