Impact
HCL Traveler for Microsoft Outlook libraries are flagged by the operating system or security software as potentially malicious or unrecognized programs. This misclassification leads to the Traveler add‑in being blocked or prevented from loading, effectively disabling Outlook integration features such as email, calendar, or other productivity tools. The weakness is catalogued as CWE‑347, an inappropriate restriction of functionality.
Affected Systems
The vulnerability affects the HCLSoftware Traveler for Microsoft Outlook product line. No specific impacted versions are listed, so the entire range of Traveler installations is considered at risk.
Risk and Exploitability
The CVSS score of 6.7 indicates a moderate severity. The EPSS score is not provided, and the vulnerability is not listed as a Known Exploited Vulnerability in CISA KEV, suggesting that active exploitation is not reported. The likely vector involves an user or service triggering Outlook to load the Traveler libraries, resulting in the add‑in being blocked by security controls. The impact is primarily a denial of functionality rather than direct compromise of confidentiality or integrity.
OpenCVE Enrichment