Exploitation of Gladinet CentreStack Cryptographic Flaw Leads to RCE Attacks

Exploitation of Gladinet CentreStack Cryptographic Flaw Leads to RCE Attacks

First seen 11 Dec 2025, 22:50 UTC HuntressBleepingcomputerCsoonlineFilestore.Fortinet 82% similarity 52.2

Article Content

Browse articles
ThreatCluster

Hackers are exploiting a cryptographic vulnerability in Gladinet's CentreStack and Triofox products, which allows for remote code execution. The flaw involves hardcoded cryptographic keys in the AES implementation, enabling unauthorized access to sensitive files. Gladinet has advised customers to update their products to the latest version released on November 29, 2025.

ThreatCluster AI

Community

Browse all →