CVE-2026-8362
Deferred Deferred - Pending Action

Stack-Based Buffer Overflow in WOSDefaultHttpModule

Vulnerability report for CVE-2026-8362, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-05-27

Last updated on: 2026-05-28

Assigner: Tenable Network Security, Inc.

Description

A stack-based buffer overflow condition exists in WOSDefaultHttpModule.dll when processing a long URL path starting with /woshome

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-05-27
Last Modified
2026-05-28
Generated
2026-07-07
AI Q&A
2026-05-27
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
gladinet triofox_server_agent to 17.1.10488.57063 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a stack-based buffer overflow that occurs in the WOSDefaultHttpModule.dll component when it processes a long URL path starting with /woshome.

Impact Analysis

Exploitation of this vulnerability can lead to severe impacts including complete compromise of confidentiality, integrity, and availability of the affected system, as indicated by the high CVSS score of 9.8.

Detection Guidance

This vulnerability involves a stack-based buffer overflow in WOSDefaultHttpModule.dll when processing a long URL path starting with /woshome.

To detect attempts to exploit this vulnerability on your network or system, you can monitor HTTP requests for unusually long URL paths beginning with /woshome.

For example, you can use network traffic analysis tools or web server logs to search for requests matching the pattern /woshome followed by a long string.

A simple command to search web server logs for suspicious requests might be:

  • grep "/woshome" /path/to/access.log | grep -E ".{100,}"

This command looks for requests containing /woshome with URL paths longer than 100 characters, which could indicate an attempt to trigger the buffer overflow.

Mitigation Strategies

Immediate mitigation steps include updating the affected software to a version that addresses the vulnerability.

Although the provided resource details a related vulnerability (CVE-2026-8361) fixed in Gladinet Triofox Server Agent version 17.3.10565.57509, no direct patch information is available for CVE-2026-8362.

As a general best practice, restrict or filter HTTP requests with suspiciously long URL paths starting with /woshome at the network perimeter or web server level to prevent exploitation.

Additionally, consider disabling or restricting access to the WOSDefaultHttpModule.dll component if possible until a patch or update is available.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-8362. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart