CVE-2026-8361 PUBLISHED

Gladinet Triofox Path Traversal in WOSDefaultHttpModule.dll

Assigner: tenable
Reserved: 11.05.2026 Published: 27.05.2026 Updated: 27.05.2026

A path traversal vulnerability exists in WOSDefaultHttpModule.dll when processing a URL path starting with /woshome

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS Score: 7.5

Product Status

Vendor Gladinet
Product Triofox
Versions Default: unaffected
  • affected from 0 to 17.3.10565.57509 (excl.)

References

Problem Types

  • CWE-23 Relative path traversal CWE

Impacts

  • CAPEC-54 Query System for Information