What is it?
Gladinet CentreStack and TrioFox are parts of a file sharing service that does not rely on a traditional VPN (Virtual Private Network).
There is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files.
You can learn more about the threat at the Huntress link below.
Why is it a risk?
By accessing files without authentication, a threat actor may retrieve the machine key from the application Web.config file and then perform remote code execution.
This exploitation has been observed “in the wild” in October 2025.
The risk assessment of this exploit has not yet been published.
How can you mitigate the risk?
You should immediately upgrade your Gladinet CentreStack version to 16.10.10408.56683 (14 Oct 2025) or higher.
A Installation GUI Tool is available at the CentreStack Release History link below.
Resources:
Huntress Active Exploitation Alert
https://www.huntress.com/blog/gladinet-centrestack-triofox-local-file-inclusion-flaw
CentreStack Release History
https://www.centrestack.com/p/gce_latest_release.html
