Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/05/27 12:0 a.m.9 views

Gladinet Triofox 安全漏洞

Gladinet Triofox is an enterprise file sharing and remote access platform developed by the American company Gladinet. There is a security vulnerability in Gladinet Triofox. This vulnerability arises from the absence of the WOSHttpStatusModule.dll module when processing URL paths starting with...

7.5CVSS5.8AI score0.00275EPSS
Exploits0References1
CISA
CISA
added 2025/12/15 12:0 p.m.59 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-14611link is external Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability CVE-2025-43529link is external Apple Multiple Products...

9.8CVSS6.7AI score0.50949EPSS
In wildExploits11References7
The Hacker News
The Hacker News
added 2025/12/11 5:56 a.m.9 views

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

Huntress is warning of a new actively exploited vulnerability in Gladinet's CentreStack and Triofox products stemming from the use of hard-coded cryptographic keys that have affected nine organizations so far. "Threat actors can potentially abuse this as a way to access the web.config file, openi...

9.8CVSS9.9AI score0.92727EPSS
Exploits10
The Hacker News
The Hacker News
added 2025/11/10 8:49 p.m.10 views

Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature

Google's Mandiant Threat Defense on Monday said it discovered n-day exploitation of a now-patched security flaw in Gladinet's Triofox file-sharing and remote access platform. The critical vulnerability, tracked as CVE-2025-12480 CVSS score: 9.1, allows an attacker to bypass authentication and...

9.8CVSS10AI score0.92727EPSS
Exploits9
EUVD
EUVD
added 2025/11/10 3:31 p.m.7 views

EUVD-2025-44062

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS6.3AI score0.90355EPSS
Exploits1References5
VulnCheck KEV
VulnCheck KEV
added 2025/11/10 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS5.8AI score0.90355EPSS
In wildExploits1References100
Positive Technologies
Positive Technologies
added 2025/04/03 12:0 a.m.11 views

PT-2025-14795

Name of the Vulnerable Software and Affected Versions Gladinet CentreStack versions prior to 16.4.10315.56368 Gladinet Triofox versions prior to 16.4.10317.56372 Description Gladinet CentreStack and Triofox are affected by a deserialization vulnerability due to the use of a hardcoded machineKey i...

9.8CVSS10AI score0.92727EPSS
Exploits6References162
Rows per page
Query Builder