Path Traversal Vulnerability in WOSDefaultHttpModule.dll Affecting Software Solutions
CVE-2026-8361

7.5HIGH

Key Information:

Vendor: Gladinet
Status: Triofox
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-8361?

A path traversal vulnerability has been identified in WOSDefaultHttpModule.dll, which is triggered when processing a URL path that initiates with /woshome. This flaw may enable an attacker to manipulate file paths, potentially allowing unauthorized access to files on the server. Proper validation and sanitization of URL input are essential to mitigate this risk.

Affected Version(s)

Triofox 0 < 17.3.10565.57509

References

https://www.tenable.com/security/research/TRA-2026-45

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 11, 2026

CVE-2026-8361 Data

JSON

Gladinet

What is CVE-2026-8361?

Affected Version(s)

References

CVSS V3.1

Timeline