Skip to main content

HCL Traveler EUVDEUVD-2025-210365

| CVE-2025-59868 MEDIUM
Insertion of Sensitive Information into Log File (CWE-532)
2026-06-27 HCL GHSA-h9qh-pc26-3235
5.5
CVSS 3.1 · Vendor: HCL
Share

Severity by source

Vendor (HCL) PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
vuln.today AI
5.5 MEDIUM

Local access and low privilege required to read log files; high confidentiality impact from exposed sensitive data; no integrity or availability effect.

3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
4.0 AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (HCL).

CVSS VectorVendor: HCL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

3
Patch available
Jun 27, 2026 - 03:01 EUVD
Analysis Generated
Jun 27, 2026 - 02:13 vuln.today
CVE Published
Jun 27, 2026 - 01:43 cve.org
MEDIUM 5.5

DescriptionCVE.org

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a sensitive data exposure vulnerability which could allow an attacker to exploit application information to then attempt additional attacks and cause unknown behavior in the application.

AnalysisAI

Sensitive application data exposure in HCL Traveler for Microsoft Outlook (HTMO) allows a local low-privileged attacker to read sensitive information - likely credentials, tokens, or session data written to application log files (CWE-532) - potentially enabling follow-on attacks against connected systems. The CVSS vector confirms local access with low privileges is sufficient to achieve high confidentiality impact, with no integrity or availability consequences. No public exploit code or active exploitation (CISA KEV) has been identified at time of analysis.

Technical ContextAI

CWE-532 (Insertion of Sensitive Information into Log File) identifies the root cause: the HTMO application writes sensitive runtime data - such as authentication tokens, credentials, or personally identifiable information - to log files accessible to low-privileged local users. HCL Traveler for Microsoft Outlook is an enterprise synchronization product that bridges HCL Domino/Notes email infrastructure with Microsoft Outlook clients, handling potentially sensitive mail, calendar, and credential data in transit. The CPE string cpe:2.3:a:hclsoftware:traveler_for_microsoft_outlook:*:*:*:*:*:*:*:* uses a wildcard version field, indicating HCL has not scoped the vulnerability to a specific release range in available metadata. The local attack vector (AV:L) is consistent with an attacker who has OS-level access to the host where HTMO is installed and can read log file paths.

RemediationAI

Consult HCL's official advisory at https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131419 for the patched version and upgrade instructions - no specific fixed release version was confirmed in available input data, so a version number cannot be cited here. As a compensating control pending patching, restrict read permissions on HTMO log directories to only the service account and administrators, preventing low-privileged local users from accessing log content; note this may complicate troubleshooting workflows. Additionally, audit existing log files for sensitive data and rotate any credentials or tokens that may have been written to logs. If the host is multi-tenant or accessible to multiple local users, consider isolating HTMO to a dedicated single-purpose host to reduce the local attacker footprint.

Share

EUVD-2025-210365 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy