CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0278 – An internal path disclosure vulnerability affects HCL Traveler
https://notcve.org/view.php?id=CVE-2025-0278
03 Apr 2025 — HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, or responses to user requests. HCL Traveler se ve afectado por una divulgación de ruta interna en una aplicación de Windows cuando la aplicación revela inadvertidamente rutas de archivos internas, en mensajes de error, registros de depuración o respuestas a solicitudes de usuario. • https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120335 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0279 – HCL Traveler is affected by generation of error messages containing sensitive information
https://notcve.org/view.php?id=CVE-2025-0279
03 Apr 2025 — HCL Traveler generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error codes, or stack traces. Attackers could exploit this information to gain insights into the system's architecture and potentially launch targeted attacks. HCL Traveler genera mensajes de error que proporcionan información detallada sobre errores y fallos, como rutas internas, nombres de archivo, tokens confidenciales, credenciales, có... • https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120336 • CWE-209: Generation of Error Message Containing Sensitive Information •