top of page
perceptive_background_267k.jpg

Gladinet CentreStack and TrioFox contain a hardcoded cryptographic keys vulnerability for their implementation of the AES cryptoscheme. This vulnerability degra…

Published:

15 December 2025 at 00:00:00

Alert date:

15 December 2025 at 19:02:13

Source:

cisa.gov

Click to open the original link from this advisory

Gladinet CentreStack and TrioFox contain a hardcoded cryptographic keys vulnerability in their AES implementation. This vulnerability affects publicly exposed endpoints and can lead to security degradation. The flaw may allow arbitrary local file inclusion through specially crafted requests without requiring authentication. The vulnerability impacts the cryptographic security of these file sharing and collaboration platforms.

Technical details

Mitigation steps:

Affected products:

Gladinet CentreStack
TrioFox

Related links:

https://access.triofox.com/releases_history/
https://www.centrestack.com/p/gce_latest_release.html
https://support.centrestack.com/hc/en-us/articles/360007159054-Hardening-the-CentreStack-Cluster#h_01JQRV57T37HJFQZKBZH9NBXQP
https://nvd.nist.gov/vuln/detail/CVE-2025-14611

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page