Tag: CVE-2025-30406

Gladinet is facing fresh trouble once again: vulnerabilities have been uncovered in its CentreStack and Triofox products stemming from embedded, hardcoded cryptography. According to Huntress, the AES implementation relies on fixed keys, allowing attackers to forge “access tickets” for file downloads and gain access to the web.config file. This, in turn, opens a direct path…