Local File Inclusion Vulnerability in Gladinet CentreStack and TrioFox
CVE-2025-11371

Currently unrated

Key Information:

Vendor: Gladinet
Status: Centrestack And Triofox
Vendor: CVE Published:; 9 October 2025

What is CVE-2025-11371?

Gladinet CentreStack and TrioFox have a significant Local File Inclusion vulnerability that enables unauthorized access to sensitive system files. This flaw occurs in the default installation and configuration of the products, allowing attackers to exploit it and potentially disclose critical information. Exploitation of this vulnerability has already been detected in the wild, emphasizing the urgency for users to review their security measures and apply necessary updates.

Affected Version(s)

CentreStack and TrioFox 0 <= 16.7.10368.56560

References

https://www.huntress.com/blog/gladinet-centrestack-triofo...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2025
Vulnerability Reserved
Oct 6, 2025

Credit

Bryan Masters

James Maclachlan

Jai Minton

JSON