Topic: cve-2025-12480

New Gladinet Triofox Flaw Exploited by Attackers (CVE-2025-12480)

A critical security flaw (CVE-2025-12480) in Gladinet Triofox allows unauthenticated attackers to bypass access controls and gain administrative privileges, which has been exploited by the threat group UNC6485 since late August 2025. Attackers used an HTTP Host header attack to access the configu...