Topic: machine key

Sort by: Relevance | Date
  • Hackers Exploit Gladinet CentreStack Flaw for RCE Attacks
    December 13, 2025

    Hackers Exploit Gladinet CentreStack Flaw for RCE Attacks

    A critical security flaw in Gladinet's CentreStack and Triofox platforms, due to hardcoded AES encryption keys, allows attackers to forge authentication tickets and gain remote code execution on servers. Attackers are actively exploiting this vulnerability, combining it with a known local file in...

    Read More »
  • Zero-Day Attack Hits Gladinet File Sharing Software
    October 22, 2025

    Zero-Day Attack Hits Gladinet File Sharing Software

    A zero-day vulnerability (CVE-2025-11371) in Gladinet's CentreStack and Triofox platforms allows unauthenticated attackers to access sensitive files via Local File Inclusion, with at least three organizations already targeted. Attackers exploit the LFI flaw to retrieve machine keys and chain it w...

    Read More »

Related Topics

remote code execution (2) huntress research (2) mitigation guidance (1) threat actors (1) exploitation activity (1) product update (1) patch availability (1) healthcare sector (1)