← Browse CVEs
CVE-2025-11371
High · CVSS 7.5EPSS 92.1%CISA KEVCWE-552 · Files Accessible to External Parties
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and Triofox: All versions prior to and including 16.7.10368.56560
References
Published
Community ground truth
Community verdict
3 verdictsNot a real issue
to add your verdict.
Community real-world severity: High (High 3) — CVSS base score 7.5
In line with its CVSS base score.
Field notes & remediation
Verdicts are the quick signal — notes are the evidence and fixes behind them.
No notes yet — be the first to share what you saw or a fix that worked.