CVE-2026-21770 PUBLISHED

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to DLL hijacking

Assigner: HCL
Reserved: 05.01.2026 Published: 17.07.2026 Updated: 17.07.2026

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a DLL hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
CVSS Score: 6.5

Product Status

Vendor HCLSoftware
Product HCL Traveler for Microsoft Outlook (HTMO)
Versions Default: unaffected
  • Version < 3.0.16 is affected

References

Problem Types

  • CWE-427 Uncontrolled Search Path Element CWE