Skip to main content

Dryice Aex

4 CVEs product

Monthly

CVE-2024-30135 HIGH This Week

HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dryice Aex
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2024-30111 HIGH This Week

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dryice Aex
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2024-30110 CRITICAL Act Now

HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Dryice Aex
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-30109 MEDIUM This Month

HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Dryice Aex
NVD
CVSS 3.1
6.1
EPSS
0.4%
EPSS 0% CVSS 7.5
HIGH This Week

HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dryice Aex
NVD
EPSS 0% CVSS 7.5
HIGH This Week

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dryice Aex
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Dryice Aex
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Dryice Aex
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy