Zero-Day Vulnerability in Gladinet File-Sharing Software Exposes Systems to Unauthenticated Access

A critical zero-day vulnerability (CVE-2025-11371) has been identified in Gladinet's CentreStack and Triofox file-sharing products. This vulnerability allows local attackers to access system files without authentication, posing significant risks to organizations using these solutions. The vulnerability, which is being actively exploited by malicious actors, enables privilege escalation, potentially granting attackers unauthorized access to sensitive data.

The impact of this vulnerability on the cybersecurity landscape is substantial. Zero-day vulnerabilities are particularly dangerous because they are exploited before vendors are aware of them, leaving users vulnerable until a patch is developed and deployed. In this case, the vulnerability affects enterprise file-sharing solutions, which are often used to store and share sensitive business data. The local attack vector means that an attacker would need initial access to the system, but once obtained, they can exploit this vulnerability to gain further access.

From a technical perspective, the vulnerability appears to stem from improper access controls. Normally, system files are protected and require authentication to access. However, this vulnerability allows attackers to bypass these controls, potentially leading to data breaches or other malicious activities.

For cybersecurity professionals, it is crucial to be aware of this vulnerability and take immediate steps to mitigate the risk. While an official patch may not be available yet, organizations should monitor their systems for any signs of exploitation and consider implementing temporary workarounds. It is also advisable to restrict access to systems running these products to minimize the risk of initial access by attackers.

In conclusion, the discovery of this zero-day vulnerability highlights the importance of robust access controls and the need for continuous monitoring and updating of security measures. Organizations using Gladinet's CentreStack and Triofox should prioritize addressing this vulnerability to protect their systems and data from potential exploitation.