Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
CVE-2026-8364: Gladinet Triofox Service Exposes Sensitive Information
CVE-2026-8364
Summary
The Gladinet Triofox service listens on a public port and accepts HTTP requests with specific paths, potentially allowing unauthorized access to sensitive data. This could lead to information disclosure or unauthorized configuration changes. It's recommended to restrict access to the service or configure it to only listen on a private network.
Original title
Gladinet Triofox Cloud Server Agent Access Service (GladServerAgentService.exe) listens on TCP port 7878 and processes remote HTTP messages with URL paths starting with /resources, /status, /sysinf...
Original description
Gladinet Triofox Cloud Server Agent Access Service (GladServerAgentService.exe) listens on TCP port 7878 and processes remote HTTP messages with URL paths starting with /resources, /status, /sysinfo, /woshome, /Settings, /schedule, or /DavCache.
nvd CVSS3.1
9.8
Vulnerability type
CWE-306
Missing Authentication for Critical Function
Published: 27 May 2026 · Updated: 28 May 2026 · First seen: 27 May 2026