Google’s Mandiant Threat Defense recently highlighted the exploitation of a significant security vulnerability in Gladinet’s Triofox file-sharing and remote access platform. This vulnerability, designated as CVE-2025-12480 with a high CVSS score of 9.1, poses a substantial threat as it allows attackers to bypass authentication mechanisms.
The implications of this flaw are severe, enabling unauthorized access to configuration pages, which may lead to the upload and execution of arbitrary payloads. Given the critical nature of this vulnerability, it is essential for users of the Triofox platform to ensure that they apply the necessary patches to mitigate the risk associated with this exploit. Awareness and timely action are crucial in the face of such threats.
👉 Pročitaj original: The Hacker News
