CVE-2023-37524

HIGH

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service

Title source: cna
STIX 2.1

Description

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service.  Since .NET Framework 4.5 has reached end-of-life and no longer receives security updates, it may expose the application to publicly known security weaknesses through vulnerable third-party components.

Scores

CVSS v3 7.7
EPSS 0.0010
EPSS Percentile 1.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-1104
Status published
Products (2)
HCLSoftware/Traveler for Microsoft Outlook <3.0.6
hcltech/traveler_for_microsoft_outlook < 3.0.6
Published Jun 27, 2026
Tracked Since Jun 27, 2026