🔴 CVE-2025-14611

Gladinet CentreStack and TrioFox use hardcoded AES keys enabling unauthenticated arbitrary local file inclusion on public-facing endpoints. This vulnerability is actively exploited and listed in CISA's KEV catalog.

← Back to Overview
HIGH_RISK
Risk Level
7.1
CVSS Score
NETWORK
Attack Vector
Initial Access
ATT&CK Tactic
T1190 — Exploit Public-Facing Application
ATT&CK Technique
VERY_HIGH
Deployment Risk
No
Ransomware

📋 Vulnerability Details

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2025-12-12

Added to CISA KEV: 2025-12-15 3 DAYS BETWEEN CVE AND KEV

🎯 Recommendations:

🔍 Web Intelligence (Kagi · 2025-12-16)

Here's what is known about the CVE-2025-14611 vulnerability exploitation:

General Information:
  • CVE-2025-14611 is a vulnerability present in Gladinet CentreStack and Triofox. It involves hardcoded cryptographic keys. [2]
  • CISA has added CVE-2025-14611 to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. [1][5]
  • Vulnerabilities in the KEV catalog carry significant risk and are frequent attack vectors for malicious cyber actors. [3][4]
CISA Known Exploited Vulnerabilities (KEV) Status:
  • CVE-2025-14611 is listed in CISA's KEV catalog. [2][5]
  • CISA's Binding Operational Directive (BOD) 22-01 established the KEV Catalog as a list of CVEs that carry significant risk to the federal enterprise. [1]
While the provided information confirms active exploitation and inclusion in the CISA KEV catalog, details regarding the following are not available:
  • Whether it affects internet-facing applications or services
  • Specific attack vectors and exploitation methods
  • Whether it's been used in targeted attacks
  • Technical details about internet exploitability

Sources

  1. Alert CISA Adds Two Known Exploited Vulnerabilities to Catalog...

    Moderator. CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-14611.These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

  2. Known Exploited Vulnerabilities Catalog

    CVE-2025-14611​​ Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability: Gladinet CentreStack and TrioFox contain a hardcoded cryptographic keys ...Read more…

  3. CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA

    CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-48927 TeleMessage TM SGNL Initialization of a Resource with an Insecure Default Vulnerability.These types of vulnerabilities are frequent attack vectors for…

  4. CISA Adds One Known Exploited Vulnerability to Catalog | CISA

    CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-6554 Google Chromium V8 Type Confusion Vulnerability. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significa…

  5. CISA Adds Two Known Exploited Vulnerabilities to Catalog

    CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.Read more…

Generated by PatchNow Intelligence System

Analysis based on CIRCL.LU data, Claude AI assessment, and MITRE ATT&CK framework

📄 Download JSON Data | 📡 RSS Feed