This page lists publicly disclosed CVE vulnerabilities affecting hcltech dryice_aex (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-30135 | HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken. | [email protected] | 3.3 | 0.33% | 2024-06-28 | 2026-06-17 |
| CVE-2024-30111 | HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security and potentially leading to data breaches or other malicious activities. | [email protected] | 3.3 | 0.32% | 2024-06-28 | 2026-06-17 |
| CVE-2024-30110 | HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web application. A malicious script can be injected into a system which can cause the system to behave in unexpected ways. | [email protected] | 3.7 | 0.46% | 2024-06-28 | 2026-06-17 |
| CVE-2024-30109 | HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. An attacker can use multiple transparent or opaque layers to trick a user into clicking on a button or link on another page than the one intended. | [email protected] | 3.7 | 0.35% | 2024-06-28 | 2026-06-17 |