CVE-2025-59868 | HCL Traveler for Microsoft Outlook (HTMO) is susceptible to … | CVSS 5.5 MEDIUM

Description

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a sensitive data exposure vulnerability which could allow an attacker to exploit application information to then attempt additional attacks and cause unknown behavior in the application.

Metadata

CVE ID: CVE-2025-59868
State: PUBLISHED
Assigner: HCL
Reserved: 2025-09-22 15:00 UTC
Published: 2026-06-27 01:43 UTC
Last updated: 2026-06-27 01:43 UTC
Primary CWE: CWE-532
CWE-532 Insertion of sensitive information into log file
Vendor / Product: HCLSoftware / Traveler for Microsoft Outlook
Sources: cve.org · NVD

Severity & Metrics

5.5 MEDIUM CVSS 3.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products (1)

Vendor	Product	Platform	Versions
HCLSoftware	Traveler for Microsoft Outlook	—	<3.0.15

Weakness (CWE)

CWE	Source	Description
CWE-532	cna	CWE-532 Insertion of sensitive information into log file

CVSS scores (1)

Score	Severity	Version	Source	Vector
5.5	MEDIUM	3.1	cna	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References (1)

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131419