top of page
perceptive_background_267k.jpg

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

Published:

11 december 2025 om 05:56:00

Alert date:

11 december 2025 om 08:01:04

Source:

thehackernews.com

Click to open the original link from this advisory

Huntress discovered an actively exploited vulnerability in Gladinet's CentreStack and Triofox products involving hard-coded cryptographic keys. The vulnerability allows threat actors to access web.config files, potentially leading to deserialization attacks and remote code execution. Nine organizations have been affected by active attacks exploiting this security flaw. The hard-coded keys create a significant security risk by providing unauthorized access to sensitive system configurations.

Technical details

Mitigation steps:

Affected products:

Gladinet CentreStack
Gladinet Triofox

Related links:

https://thehackernews.com/2025/12/hard-coded-gladinet-keys-let-attackers.html

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page