Attackers have exploited a now-fixed vulnerability (CVE-2025-12480) in the Gladinet Triofox secure file sharing and remote access platform while it was still a zero-day, Mandiant revealed on Monday. CVE-2025-12480 exploitation and attack details Gladinet’s Triofox solution is used by medium and large businesses to securely share files and allow users to access them without a VPN. CVE-2025-12480 is an Improper Access Control flaw allowing unauthenticated attackers to access the solution’s configuration/setup page. According to Mandiant’s … More
The post Attackers exploited another Gladinet Triofox zero-day (CVE-2025-12480) appeared first on Help Net Security.
This article has been indexed from Help Net Security
Read the original article: