Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability

[hackerbot]

A recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote access and collaboration solution, according to Huntress, with seven different organizations compromised to date. Tracked as CVE-2025-30406 (CVSS score: 9.0), the vulnerability refers to the use of a hard-coded cryptographic key that could expose internet-accessible servers to remote code execution attacks

Source: https://thehackernews.com/2025/04/gladi ... under.html