Gladinet CentreStack Vulnerability: A Comedy of Hard-Coded Errors in Cybersecurity!

CISA has added a critical Gladinet CentreStack flaw to its Known Exploited Vulnerabilities catalog. The vulnerability, CVE-2025-30406, involves a hard-coded cryptographic key, enabling remote code execution. Gladinet urges immediate patching or rotating the machineKey as a temporary fix.

3P
Published: April 9, 2025 9:28 amAdded: April 9, 2025 at 2:43 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like Gladinet CentreStack just got a new key to fame, and it’s not the kind you want to be handing out at parties. With a hard-coded cryptographic key flaw as their guest of dishonor, it seems like they’ve inadvertently invited cyber criminals to crash the server-side soiree. Good thing CISA is on the case, adding this little oopsie to their Known Exploited Vulnerabilities catalog. Remember, folks, always keep your keys close and your patches closer!

Key Points:

  • CISA added CVE-2025-30406 to its Known Exploited Vulnerabilities (KEV) catalog.
  • The flaw involves a hard-coded cryptographic key allowing remote code execution.
  • Gladinet CentreStack has released a patch in version 16.4.10315.56368.
  • The vulnerability has been actively exploited as a zero-day since March 2025.
  • Temporary mitigation includes rotating the machineKey value if patching is delayed.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?