Cyber Resilience

CVE-2024-30111

Low

Published: 28 June 2024

Published
28 June 2024
Modified
30 October 2025
KEV Added
Patch
CVSS Score v3.1 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score 0.0040 60.8th percentile
Risk Priority 7 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-30111 is a low-severity Missing Immutable Root of Trust in Hardware (CWE-1326) vulnerability in Hcltech Dryice Aex. Its CVSS base score is 3.3 (Low).

Operationally, ranked in the top 39.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security…

more

and potentially leading to data breaches or other malicious activities.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

hcltech
dryice aex
10.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References