VYPR
Medium severity4.3NVD Advisory· Published Mar 24, 2026· Updated Mar 31, 2026

CVE-2026-21783

CVE-2026-21783

Description

HCL Traveler is affected by sensitive information disclosure.  The application generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error codes, or stack traces.  Attackers could exploit this information to gain insights into the system's architecture and potentially launch targeted attacks.

Affected products

2
  • HCLTech/Traveler2 versions
    cpe:2.3:a:hcltech:traveler:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hcltech:traveler:*:*:*:*:*:*:*:*range: <14.5.1.0
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.