CVE-2024-8528

Vulnerability Description

Reflected XSS using a specific URL in Automated Logic WebCTRL and Carrier i-VU can allow delivery of malicious payload due to a specific GET parameter not being sanitized.

Related Weaknesses (CWE)

CWE-79

References

https://www.corporate.carrier.com/product-security/advisories-resources/

FAQ

What is CVE-2024-8528?

CVE-2024-8528 is a documented vulnerability. Reflected XSS using a specific URL in Automated Logic WebCTRL and Carrier i-VU can allow delivery of malicious payload due to a specific GET parameter not being sanitized.

How severe is CVE-2024-8528?

CVSS scoring is not yet available for CVE-2024-8528. Check NVD for updates.

Is there a patch for CVE-2024-8528?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.