CVE-2024-30111

Summary

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security and potentially leading to data breaches or other malicious activities.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareDRYiCE AEX10affected

Weaknesses

  • CWE-1326: CWE-1326: Missing Immutable Root of Trust in Hardware

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References