EUVD-2024-55102

🗓️ 27 Nov 2025 03:30:25Reported by EUVDType

Reflective cross-site scripting in ALC WebCTRL and Carrier i-Vu before 8.0 enables login panel attacks.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-5540	27 Nov 202502:48	–	circl
CNNVD	Automated Logic WebCtrl和Carrier i-Vu 安全漏洞	27 Nov 202500:00	–	cnnvd
CVE	CVE-2024-5540	27 Nov 202501:02	–	cve
Cvelist	CVE-2024-5540 ALC WebCTRL Carrier i-Vu Reflected Cross-Site Scripting	27 Nov 202501:02	–	cvelist
NVD	CVE-2024-5540	27 Nov 202501:15	–	nvd
Positive Technologies	PT-2025-48212	27 Nov 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-5540	28 Nov 202501:05	–	redhatcve
Vulnrichment	CVE-2024-5540 ALC WebCTRL Carrier i-Vu Reflected Cross-Site Scripting	27 Nov 202501:02	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "22a153cf-bab0-361a-9c67-ae78856e6354",
        "vendor": {
          "name": "Carrier"
        }
      },
      {
        "id": "4a632ecf-5744-38ae-8238-fc82c7ab1e71",
        "vendor": {
          "name": "Automated Logic"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "29d6c51d-833b-3d19-ba93-a77d46f21716",
        "product": {
          "name": "WebCTRL"
        },
        "product_version": "0 <8.0"
      },
      {
        "id": "6839935f-d183-33dc-984e-31a3051c8cbb",
        "product": {
          "name": "i-Vu"
        },
        "product_version": "0 <8.0"
      }
    ]
  }
]

Source	Link
corporate	www.corporate.carrier.com/product-security/advisories-resources/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-5540

27 Nov 2025 03:30Current

5.7Medium risk

Vulners AI Score5.7

CVSS 46.9

EPSS0.00055