CVE-2025-14611 Gladinet CVE debrief

Who should care

Organizations operating Gladinet CentreStack or Triofox, especially administrators, security teams, and managed service providers responsible for patching, hardening, or service continuity.

Technical summary

CISA added CVE-2025-14611 to the KEV catalog on 2025-12-15 and identifies the issue as a hard-coded cryptographic vulnerability in Gladinet CentreStack and Triofox. The supplied corpus does not provide exploit primitives, impact scope, or CVSS data. CISA’s required action is to apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Defensive priority

High. KEV inclusion indicates a vulnerability CISA believes is being exploited in the wild, so exposed deployments should be prioritized for inventory, mitigation, and vendor-guided remediation.

Recommended defensive actions

• Confirm whether any CentreStack or Triofox instances are in use, including cloud-hosted or managed deployments.
• Review the vendor release and hardening guidance linked in the KEV notes and apply the recommended mitigations or updates.
• Follow CISA BOD 22-01 guidance for cloud services where applicable.
• If mitigations are unavailable or cannot be applied quickly, plan to discontinue use of the affected product until a safe remediation path exists.
• Track the CISA KEV due date of 2026-01-05 and validate remediation before that deadline.

Evidence notes

This debrief is limited to the supplied CISA KEV record and official links. The record identifies the product family (Gladinet CentreStack and Triofox), the vulnerability name (hard-coded cryptographic vulnerability), the KEV date added (2025-12-15), the due date (2026-01-05), and the required action text. No CVSS score or exploit-detail source was supplied, so those specifics are not asserted here.

Official resources