Detections
Analytics

Gladinet Triofox Server Agent Missing Authentication for Critical Function (CVE-2026-8364)

critical Nessus Plugin ID 318389

Language:

Synopsis

Gladinet Triofox Server Agent is missing authentication for critical functions.

Description

The Gladinet Triofox Server Agent running on the remote host is affected by a vulnerability involving missing authentication for critical functions.

Solution

Update Gladinet Triofox Server Agent to version 17.3.10565.57509 or later.

See Also

https://access.triofox.com/dashboard/releases_history/

Plugin Details

Severity: Critical

ID: 318389

File Name: gladinet_triofox_server_agent_cve-2026-8364.nbin

Version: 1.2

Type: Remote

Family: Misc.

Published: 6/3/2026

Updated: 6/9/2026

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:gladinet:triofox

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Patch Publication Date: 3/21/2026

Vulnerability Publication Date: 5/27/2026

Reference Information

CVE: CVE-2026-8364