Stack-Based Buffer Overflow in WOSDefaultHttpModule.dll Affects Vendor's Application
CVE-2026-8362

9.8CRITICAL

Key Information:

Vendor: Gladinet
Status: Triofox
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-8362?

A stack-based buffer overflow vulnerability is present in WOSDefaultHttpModule.dll, which can be triggered when processing a long URL path beginning with /woshome. This flaw may allow unauthorized code execution, leading to potential data breaches or system instability if successfully exploited. Organizations using applications that integrate this module should take necessary precautions and assess their systems for exposure.

Affected Version(s)

Triofox 0 < 17.3.10565.57509

References

https://www.tenable.com/security/research/TRA-2026-45

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 11, 2026

CVE-2026-8362 Data

JSON

Gladinet

What is CVE-2026-8362?

Affected Version(s)

References

CVSS V3.1

Timeline