#triofox

[ follow ]
#cve-2025-12480 #unc6485 #antivirus-path-abuse #cve-2025-11371 #local-file-inclusion #gladinet-centrestack
Information security
fromThe Hacker News
16 hours ago

Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature

CVE-2025-12480 in Gladinet Triofox enabled unauthenticated access to configuration pages, allowing admin account creation and SYSTEM-level arbitrary code execution via antivirus path abuse.
Information security
fromTheregister
1 month ago

Zero-day in popular file-sharing software actively exploited

Apply the available mitigation immediately for Gladinet CentreStack and Triofox to mitigate actively exploited CVE-2025-11371, as no patch is available.
[ Load more ]