CVE-2024-30111
Published: 28 June 2024
Summary
CVE-2024-30111 is a low-severity Missing Immutable Root of Trust in Hardware (CWE-1326) vulnerability in Hcltech Dryice Aex. Its CVSS base score is 3.3 (Low).
Operationally, ranked in the top 39.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-28047
Vulnerability details
HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security…
more
and potentially leading to data breaches or other malicious activities.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.