What is CVE-2026-21783?

CVE-2026-21783 is a medium-severity vulnerability in Hclsoftware Traveler, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.3/10. Published 2026-03-24.

How severe is CVE-2026-21783?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Information disclosure in Hclsoftware Traveler

CVE-2026-21783

HCL Traveler is affected by sensitive information disclosure. The application generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, er…

EPSS: 0.000 (2.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.

Affected products

Hclsoftware Traveler — versions < 14.5.1.0

Weakness classification (CWE)

CWE-209 — Generation of Error Message Containing Sensitive Information

References

support.hcl-software.com/csm

Frequently asked questions

What is CVE-2026-21783?: CVE-2026-21783 is a medium-severity vulnerability in Hclsoftware Traveler, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.3/10. Published 2026-03-24.
How severe is CVE-2026-21783?: Medium severity. CVSS v3 base score is 4.3 out of 10.