DLL Hijacking Vulnerability in HCL Traveler for Microsoft Outlook
CVE-2024-42190

6.5MEDIUM

Key Information:

Vendor: HCL Software Software
Status: HCL Software Traveler For Microsoft Outlook (htmo)
Vendor: CVE Published:; 30 May 2025

🔔 Create HCL Software Software Vulnerability Alert

What is CVE-2024-42190?

HCL Traveler for Microsoft Outlook is exposed to a DLL hijacking vulnerability that enables an attacker to manipulate or substitute the application with harmful content. This risk can lead to the execution of arbitrary code and compromise user data and system integrity. Ensuring proper validation of DLL files and access controls is critical to mitigate such threats.

Affected Version(s)

HCL Traveler for Microsoft Outlook (HTMO) < 3.0.12

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 30, 2025
Vulnerability Reserved
Jul 29, 2024