Critical severityNVD Advisory· Published Nov 27, 2025· Updated Apr 15, 2026
CVE-2024-5539
CVE-2024-5539
Description
The Access Control Bypass vulnerability found in ALC WebCTRL and Carrier i-Vu in versions up to and including 8.5 allows a malicious actor to bypass intended access restrictions and expose sensitive information via the
web based building automation server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=8.5
- Range: <=8.5
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.