HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NHcltech Dryice Aex
APPHcltech10.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2024-30109LOW3.7ten sam produkt
HCL DRYiCE AEX is impacted by a lack of clickjacking protection in the AEX web application. An attacker can u...
CVE-2024-30110LOW3.7ten sam produkt
HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web application. ...
CVE-2024-30111LOW3.3ten sam produkt
HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mob...
CVE-2025-62319CRITICAL9.8PL ✓ten sam vendor
Boolean-Based SQL Injection umożliwiający wstrzyknięcie dowolnego SQL
CVE-2023-37502CRITICAL9.0ten sam vendor
HCL Compass is vulnerable to lack of file upload security. An attacker could upload files containing active c...