CISA Adds Gladinet CentreStack and CWP Control Web Panel Vulnerabilities to KEV Catalog Amid Active Exploitation

5 Nov 2025

CISAKEVVulnerabilitiesExploitsGladinet CentreStackCWP Control Web PanelPatch ManagementCybersecurityThreat IntelligenceSecurity NewsHackingSecurityhacking newsinformation security newsIT Information SecurityKnown Exploited Vulnerabilities CatalogPierluigi PaganiniSecurity Affairs

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added vulnerabilities affecting Gladinet CentreStack and CWP Control Web Panel to its Known Exploited Vulnerabilities (KEV) catalog. These vulnerabilities are being actively exploited in the wild, posing an immediate risk to unpatched systems. CISA's KEV catalog is a critical resource that lists vulnerabilities known to be exploited by threat actors, urging organizations to prioritize patching.

Gladinet CentreStack is a file sync and share solution, while CWP Control Web Panel is a web hosting control panel. Both are widely used in enterprise environments, and vulnerabilities in these systems can lead to significant security incidents, including data breaches and unauthorized access. The active exploitation of these vulnerabilities underscores the importance of timely patch management and vulnerability scanning.

The inclusion of these vulnerabilities in the KEV catalog highlights the ongoing threat posed by unpatched software. Organizations using these products should immediately assess their exposure and apply patches to mitigate the risk of exploitation. Continuous monitoring for signs of exploitation is also crucial, as threat actors have likely developed reliable exploit methods.

From a cybersecurity perspective, the exploitation of known vulnerabilities remains a common attack vector. The addition of these vulnerabilities to CISA's KEV catalog serves as a warning to organizations to prioritize patching and maintain robust vulnerability management practices. Threat actors often target unpatched systems due to their ease of exploitation, and the active exploitation of these vulnerabilities suggests that attacks targeting them may increase until they are widely patched.

In conclusion, cybersecurity professionals should take immediate action to patch these vulnerabilities and enhance their monitoring and detection capabilities to prevent potential breaches.

CISA Adds Gladinet CentreStack and CWP Control Web Panel Vulnerabilities to KEV Catalog Amid Active Exploitation

5 Nov 2025

In conclusion, cybersecurity professionals should take immediate action to patch these vulnerabilities and enhance their monitoring and detection capabilities to prevent potential breaches.