Zero Day MonitorZDM

← Back to list

7.7

CVE-2023-37524

hcl · traveler for microsoft outlook

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service

Description

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service. Since .NET Framework 4.5 has reached end-of-life and no longer receives security updates, it may expose the application to publicly known security weaknesses through vulnerable third-party components.

Affected Products

Vendor	Product	Versions
hcl	traveler for microsoft outlook	<3.0.6

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131418

Related News (1 articles)

Tier C

VulDB2d ago

CVE-2023-37524 | HCL Traveler for Microsoft Outlook up to 3.0.5 unmaintained third party components (KB0131418)

→ No new info (linked only)

CVSS 3.17.7 HIGH

VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited❌ No

CWECWE-1104

PublishedJun 27, 2026

Last enriched2d agov2

Trending Score22

Source articles1

Independent1

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

Multiple vulnerabilities in HCL BigFix Compliance (Ruby) allowing code execution, security bypass, data manipulation, information disclosure, and denial of service

MEDIUMCVE-2026-56457

HCL DevOps Deploy / HCL Launch is susceptible to an exposure of sensitive information

CRITICALCVE-2025-15619EXP

HCL Connections is vulnerable to broken access control

MEDIUMCVE-2025-59868

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to sensitive data exposure

MEDIUMCVE-2026-21768

HCL Verse for Android is susceptible to an injection vulnerability

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 27, 2026

Discovered by ZDM

Jun 27, 2026

Updated: affectedVersions, severity

Jun 27, 2026

Version History

v2

Last enriched 2d ago

v2Tier C2d ago

Updated affected versions to include 3.0.5, changed severity to MEDIUM, and noted that no exploit is available.

affectedVersionsseverity

via VulDB

v12d ago

Initial creation