LOW🇬🇧 English

CVE-2024-30110

CVSS 3.7v3.1pub. 2024-06-28upd. 2025-10-30

HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web application. A malicious script can be injected into a system which can cause the system to behave in unexpected ways.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Hcltech Dryice Aex

    APP
    Hcltech
    10.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2024-30109LOW3.7ten sam produkt

HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. An attacker can u...

CVE-2024-30111LOW3.3ten sam produkt

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mob...

CVE-2024-30135LOW3.3ten sam produkt

HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a...

CVE-2025-62319CRITICAL9.8PL ✓ten sam vendor

Boolean-Based SQL Injection umożliwiający wstrzyknięcie dowolnego SQL

CVE-2023-37502CRITICAL9.0ten sam vendor

HCL Compass is vulnerable to lack of file upload security.  An attacker could upload files containing active c...