exploitDog

CVE-2024-30111

Опубликовано: 28 июн. 2024

Источник: nvd

CVSS3: 3.3

CVSS3: 7.5

EPSS Низкий

Описание

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security and potentially leading to data breaches or other malicious activities.

Ссылки

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114193
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114193
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:dryice_aex:10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00395

Низкий

3.3 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-1326

Связанные уязвимости

GHSA-6crx-c7g6-f3m8

CVSS3: 7.5

github

3 месяца назад

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security and potentially leading to data breaches or other malicious activities.

EPSS

Процентиль: 60%

0.00395

Низкий

3.3 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-1326