CVE-2025-11371

HIGH KEV NUCLEI

Gladinet CentreStack/Triofox Path Traversal

Title source: metasploit

Description

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and Triofox: All versions prior to and including 16.7.10368.56560

Exploits (2)

github WORKING POC 4 stars

by halilkirazkaya · poc

https://github.com/halilkirazkaya/cve-poc-garage/tree/main/2025/CVE-2025-11371.md

View Code ZIP pw:eip

github WORKING POC 1 stars

by lap1nou · pythonremote

https://github.com/lap1nou/CVE-2025-11371

View Code ZIP pw:eip

Nuclei Templates (1)

Gladinet CentreStack & TrioFox - Local File Inclusion

MEDIUMVERIFIEDby Kazgangap

Shodan: title:"CentreStack"

FOFA: CentreStack - Login

References (3)

[Exploit, Third Party Advisory] https://www.huntress.com/blog/gladinet-centrestack-triofox-local-file-inclusion-flaw

[Release Notes] https://www.centrestack.com/p/gce_latest_release.html

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-11371

Scores

CVSS v3 7.5

EPSS 0.6765

EPSS Percentile 98.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CISA KEV 2025-11-04

VulnCheck KEV 2025-10-09

ENISA EUVD EUVD-2025-33408

CWE

CWE-552

Status published

Products (2)

gladinet/centrestack < 16.10.10408.56683

gladinet/triofox < 16.7.10368.56560

Published Oct 09, 2025

KEV Added Nov 04, 2025

Tracked Since Feb 18, 2026