CVE-2024-8527

HIGH

Automated Logic WebCTRL & Carrier i-Vu <9.0 - Open Redirect

Title source: llm
STIX 2.1

Description

Open Redirect in URL parameter in Automated Logic WebCTRL and Carrier i-Vu versions 6.0, 6.5, 7.0, 8.0, 8.5, 9.0 may allow attackers to exploit user sessions.

References (1)

Core 1

Scores

CVSS v4 8.6
EPSS 0.0013
EPSS Percentile 3.2%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-601
Status published
Products (2)
Automated Logic/WebCtrl 6.0 - 9.0
Carrier/i-Vu 6.0 - 9.0
Published Nov 19, 2025
Tracked Since Feb 18, 2026