Severity by source
AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Local-only attack requiring high OS privileges to write to DLL search paths and active user interaction to trigger load; full CIA impact from arbitrary code execution within the process.
Primary rating from Vendor (HCL).
CVSS VectorVendor: HCL
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a DLL hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content.
AnalysisAI
DLL hijacking in HCL Traveler for Microsoft Outlook (HTMO) permits a local, high-privileged attacker to replace or plant a malicious DLL in a directory searched by the application at load time, enabling arbitrary code execution within the HTMO process context. The CVSS vector (AV:L/AC:L/PR:H/UI:R) confirms the attack is constrained to local access with elevated privileges and requires a user to trigger application load, substantially limiting real-world exploitability despite the full C/I/A:H impact ratings. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires three concurrent conditions: (1) local access to the Windows host running HCL Traveler for Microsoft Outlook, (2) high-privilege (PR:H) OS-level access sufficient to write or replace files within a directory in HTMO's DLL search path - on a properly hardened Windows system this typically means administrator rights - and (3) user interaction (UI:R), specifically a user launching Microsoft Outlook or triggering HTMO initialization to cause the malicious DLL to be loaded. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 6.5 medium score accurately reflects the constrained exploitability profile. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | A local attacker who has already obtained administrator-level credentials on a Windows host running HTMO - for example, through a previous credential theft or privilege escalation - identifies a DLL loaded by the application and places a trojanized version in a directory earlier in HTMO's search path than the legitimate copy. When a user subsequently launches Microsoft Outlook or the HTMO add-in initializes, the malicious DLL is loaded into the HTMO process, executing attacker-controlled code with the full confidentiality, integrity, and availability impact of the application's trust level. … |
| Remediation | Consult and apply the fix or mitigations described in HCL Software knowledge base article KB0130919 at https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130919. … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-427 – Uncontrolled Search Path Element
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-45141
GHSA-7vgx-3mff-rjp8