File sharing flaw prompts dangerous cyberattacks – and there’s no patch
- Gladinet CentreStack/Triofox have a zero-day vulnerability
- The flaw (CVE-2025-11371) allows remote code execution
- Users should apply mitigation measures as no patch is available
Gladinet CentreStack and Triofox, the secure file sharing and remote access solutions developed by Gladinet, feature a zero-day vulnerability that is being exploited to remotely execute malicious code (RCE), according to researchers. Since zero days are actively exploited and no fixes are available yet, users are advised to apply available mitigations as soon as possible.
CentreStack is a B2B file sharing solution that allows employees to remotely access company files via mapped drives, mobile apps, or browsers, without migrating everything to public cloud services like Dropbox or Google Drive. Triofox, on the other hand, is a cloud platform for file servers that provides VPN-free remote access with Active Directory integration, version control, and secure file sharing.
Recently, security researchers at Huntress were informed of the successful exploitation of a previously undocumented vulnerability. After contacting Gladinet, Huntress learned that the company was already aware of the breach and was in contact with a few victims to try to minimize the damage.
Three victims so far
The flaw is described as an “unauthenticated local file inclusion vulnerability that allows malicious actors to extract machine keys from the application’s Web.config file.” It is now tracked as CVE-2025-11371 and has a severity score of 6.2/10 (medium).
Don’t let the relatively low rating fool you – this is a dangerous flaw that allows RCE. According to Huntress, three companies have so far fallen victim to anonymous attackers, and given that there is no patch yet, that number could increase significantly.
Gladinet has already informed its customers of the breach and is actively working to help them minimize the risks. Companies that read their suppliers’ correspondence should therefore do well. If you haven’t read your emails yet, you can also check out the Huntress blog for more details on how to stay safe. We don’t know how many businesses could be at risk, but according to Gladinet’s website, there are at least 1,000.
Via The register
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds. Make sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp Also.
You may also like
