Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Local access and low privilege required to read log files; high confidentiality impact from exposed sensitive data; no integrity or availability effect.
Primary rating from Vendor (HCL).
CVSS VectorVendor: HCL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
3DescriptionCVE.org
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a sensitive data exposure vulnerability which could allow an attacker to exploit application information to then attempt additional attacks and cause unknown behavior in the application.
AnalysisAI
Sensitive application data exposure in HCL Traveler for Microsoft Outlook (HTMO) allows a local low-privileged attacker to read sensitive information - likely credentials, tokens, or session data written to application log files (CWE-532) - potentially enabling follow-on attacks against connected systems. The CVSS vector confirms local access with low privileges is sufficient to achieve high confidentiality impact, with no integrity or availability consequences. No public exploit code or active exploitation (CISA KEV) has been identified at time of analysis.
Technical ContextAI
CWE-532 (Insertion of Sensitive Information into Log File) identifies the root cause: the HTMO application writes sensitive runtime data - such as authentication tokens, credentials, or personally identifiable information - to log files accessible to low-privileged local users. HCL Traveler for Microsoft Outlook is an enterprise synchronization product that bridges HCL Domino/Notes email infrastructure with Microsoft Outlook clients, handling potentially sensitive mail, calendar, and credential data in transit. The CPE string cpe:2.3:a:hclsoftware:traveler_for_microsoft_outlook:*:*:*:*:*:*:*:* uses a wildcard version field, indicating HCL has not scoped the vulnerability to a specific release range in available metadata. The local attack vector (AV:L) is consistent with an attacker who has OS-level access to the host where HTMO is installed and can read log file paths.
RemediationAI
Consult HCL's official advisory at https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131419 for the patched version and upgrade instructions - no specific fixed release version was confirmed in available input data, so a version number cannot be cited here. As a compensating control pending patching, restrict read permissions on HTMO log directories to only the service account and administrators, preventing low-privileged local users from accessing log content; note this may complicate troubleshooting workflows. Additionally, audit existing log files for sensitive data and rotate any credentials or tokens that may have been written to logs. If the host is multi-tenant or accessible to multiple local users, consider isolating HTMO to a dedicated single-purpose host to reduce the local attacker footprint.
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of servi
The HCL Traveler for Microsoft Outlook libraries are being flagged as potentially malicious software or an unrecognized
The HCL Traveler for Microsoft Outlook executable (HTMO.exe) is being flagged as potentially Malicious Software or an Un
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability. Rated medium severity (CVSS 5.
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a COM hijacking vulnerability which could allow an attacker
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a DLL hijacking vulnerability which could allow an attacker
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-210365
GHSA-h9qh-pc26-3235