You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
gladinet centrestack
About this tag
Gladinet CentreStack is a cloud storage solution that has been the subject of multiple high-risk vulnerability disclosures by the Cybersecurity and Infrastructure Security Agency (CISA). Recent additions to CISA's Known Exploited Vulnerabilities (KEV) Catalog include a hard-coded cryptographic key weakness (CVE-2025-14611), an unauthenticated local file inclusion flaw (CVE-2025-11371), and a deserialization vulnerability due to a hardcoded machineKey (CVE-2025-30406). These vulnerabilities have been actively exploited in real-world attacks, prompting urgent remediation requirements for federal agencies under Binding Operational Directive 22-01. Discussions on WindowsForum.com cover the technical details, exploitation risks, and practical steps for securing Gladinet CentreStack and related Triofox deployments.
CISA has added two high‑risk entries to its Known Exploited Vulnerabilities (KEV) Catalog — a hard‑coded cryptography weakness in Gladinet CentreStack and Triofox (CVE‑2025‑14611) and a severe WebKit memory‑corruption/use‑after‑free bug exploited against Apple products (CVE‑2025‑43529) — and...
CISA has quietly expanded its Known Exploited Vulnerabilities (KEV) Catalog again, adding two actively exploited flaws that demand immediate attention from system owners and defenders: an unauthenticated local file inclusion in Gladinet CentreStack and Triofox tracked as CVE-2025-11371, and an...
The Cybersecurity and Infrastructure Security Agency (CISA) has recently expanded its Known Exploited Vulnerabilities Catalog by adding two critical vulnerabilities: CVE-2025-30406 and CVE-2025-29824. These vulnerabilities have been actively exploited, posing significant risks to organizations...
CISA’s recent update to its Known Exploited Vulnerabilities Catalog highlights just how critical it is for organizations to stay on top of emerging cyber threats. In response to evidence of active exploitation, CISA has added two vulnerabilities – one affecting Gladinet CentreStack and the other...