Attackers are exploiting Gladinet CentreStack, Triofox vulnerability with no patch (CVE-2025-11371)

CVE-2025-11371, a unauthenticated Local File Inclusion vulnerability in Gladinet CentreStack and Triofox file-sharing and remote access platforms, is being exploited by attackers in the wild. While Gladinet is aware of the vulnerability and of its active exploitation, a patch is still in the works. In the meantime, users can and should mitigate the flaw by disabling a handler within their installation’s Web.config file. “We have observed in-the-wild exploitation of this vulnerability impacting three customers so … More → The post Attackers are exploiting Gladinet CentreStack, Triofox vulnerability with no patch (CVE-2025-11371) appeared first on Help Net Security.
http://news.poseidon-us.com/TNbRVy

Attackers are exploiting Gladinet CentreStack, Triofox vulnerability with no patch (CVE-2025-11371)

Like this:

Related

More Posts

Qantas says customer data released by cyber criminals

Hoyts highlights its mobile-first journey

Week in review: Hackers extorting Salesforce, CentreStack 0-day exploited

RondoDox IoT botnet swells to 56 exploits in shotgun campaign

TSA CIO, State senior procurement executive moving on

TSA CIO, State senior procurement executive moving on

TSA CIO, State senior procurement executive moving on

Share this:

Like this:

Related

More Posts

Qantas says customer data released by cyber criminals

Hoyts highlights its mobile-first journey

Week in review: Hackers extorting Salesforce, CentreStack 0-day exploited

RondoDox IoT botnet swells to 56 exploits in shotgun campaign

TSA CIO, State senior procurement executive moving on

TSA CIO, State senior procurement executive moving on

TSA CIO, State senior procurement executive moving on