CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30134 – HCL Traveler for Microsoft Outlook (HTMO) is susceptible to an application modification vulnerability
https://notcve.org/view.php?id=CVE-2024-30134
The HCL Traveler for Microsoft Outlook executable (HTMO.exe) is being flagged as potentially Malicious Software or an Unrecognized Application. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114723 • CWE-295: Improper Certificate Validation •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30128 – An open proxy vulnerability affects HCL Nomad server on Domino
https://notcve.org/view.php?id=CVE-2024-30128
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0115504 • CWE-441: Unintended Proxy or Intermediary ('Confused Deputy') •
CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30130 – HCL Nomad server on Domino is affected by a use of web browser cache containing sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2024-30130
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information. El servidor HCL Nomad en Domino es vulnerable al caché que contiene información confidencial, lo que potencialmente podría brindarle a un atacante la capacidad de adquirir información confidencial. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114184 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30135 – Sensitive Information Disclosure vulnerability affects DRYiCE AEX v10
https://notcve.org/view.php?id=CVE-2024-30135
HCL DRYiCE AEX is potentially impacted by disclosure of sensitive information in the mobile application when a snapshot is taken. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114193 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30111 – Missing Root Detection vulnerability affects DRYiCE AEX v10
https://notcve.org/view.php?id=CVE-2024-30111
HCL DRYiCE AEX product is impacted by Missing Root Detection vulnerability in the mobile application. The mobile app can be installed in the rooted device due to which malicious users can gain unauthorized access to the rooted devices, compromising security and potentially leading to data breaches or other malicious activities. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114193 • CWE-1326: Missing Immutable Root of Trust in Hardware •