Gladinet’s Security Fiasco: Triofox and CentreStack Vulnerability Exposes Organizations to Cyber Attacks

Gladinet Triofox users, brace yourselves! A security flaw tracked as CVE-2025-30406, with a chilling CVSS score of 9.0, has been uncovered. It exploits hard-coded cryptographic keys, making remote code execution attacks a breeze. Update now or risk becoming a hacker’s latest accessory in the cyber fashion show.

3P
Published: April 15, 2025 5:17 amAdded: April 14, 2025 at 10:28 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew hard-coding cryptographic keys in software was a bad idea? Apparently, not Gladinet! This vulnerability is like leaving the keys to your house under the doormat, except the house is the internet and the doormat is… also the internet. Time to grab some popcorn and watch the chaos unfold!

Key Points:

  • Gladinet’s CentreStack and Triofox solutions are vulnerable due to a hard-coded cryptographic key.
  • The flaw, tracked as CVE-2025-30406, boasts a CVSS score of 9.0, signaling critical severity.
  • Seven organizations have been compromised, with the vulnerability being actively exploited.
  • The issue has been patched in CentreStack version 16.4.10315.56368, released on April 3, 2025.
  • Users are urged to update to the latest versions to avoid becoming part of the cyber circus.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?