HCL Sametime for Android Leaks Sensitive Hostnames in Logs

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

3.3

HCL Sametime for Android Leaks Sensitive Hostnames in Logs

CVE-2026-21791

Summary

HCL Sametime for Android stores sensitive hostnames in its logs, potentially exposing users' connection details. This is a concern because it could allow unauthorized access to sensitive information. To mitigate this, update to the latest version of the app or contact your IT department to ensure you're running the most secure version.

Original title

HCL Sametime for Android is impacted by a sensitive information disclosure. Hostnames information is written in application logs and certain URL

Original description

HCL Sametime for Android is impacted by a sensitive information disclosure. Hostnames information is written in application logs and certain URL

nvd CVSS3.1 3.3

Vulnerability type

CWE-532 Insertion of Sensitive Information into Log File

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129451

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026