CVE-2026-21790

Published: Mar 24, 2026 Last Modified: Mar 24, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,3

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: low

Integrity: low

Availability: low

Description

AI Translation Available

HCL Traveler is susceptible to a weak default HTTP header validation vulnerability, which could allow an attacker to bypass additional authentication checks.

346

Origin Validation Error

Draft

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Other Access Control

Potential Impacts:

Gain Privileges Or Assume Identity Varies By Context

Applicable Platforms

Technologies: Not Technology-Specific, Web Based

View CWE Details

https://support.hcl-software.com/csm?id=kb_article&sysparm_…

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129139

CVE-2026-21790

Description

Origin Validation Error

Common Consequences

Applicable Platforms

Iscriviti alla newsletter