CVE-2026-21786 PUBLISHED

HCL Sametime for iOS is affected by sensitive information disclosure

Assigner: HCL
Reserved: 05.01.2026 Published: 05.03.2026 Updated: 05.03.2026

HCL Sametime for iOS is impacted by a sensitive information disclosure. Hostnames information is written in application logs and certain URLs.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS Score: 3.3

Product Status

Vendor HCLSoftware
Product Sametime for iOS
Versions Default: unaffected
  • Version < 12.0.26 is affected

References

Problem Types

  • CWE-532 Insertion of Sensitive Information into Log File CWE