Skip to main content

Centrestack

3 CVEs product

Monthly

CVE-2025-30406 CRITICAL POC KEV PATCH THREAT Act Now

Gladinet CentreStack contains a deserialization vulnerability caused by a hardcoded machineKey in the portal, allowing unauthenticated remote code execution through crafted ViewState payloads.

RCE Deserialization Centrestack
NVD
CVSS 3.1
9.0
EPSS
83.4%
Threat
7.3
CVE-2023-26830 HIGH POC This Week

An unrestricted file upload vulnerability in the administrative portal branding component of Gladinet CentreStack before 13.5.9808 allows authenticated attackers to execute arbitrary code by. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Centrestack
NVD
CVSS 3.1
7.2
EPSS
1.1%
CVE-2023-26829 CRITICAL POC Act Now

An authentication bypass vulnerability in the Password Reset component of Gladinet CentreStack before 13.5.9808 allows remote attackers to set a new password for any valid user account, without. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Centrestack
NVD
CVSS 3.1
9.8
EPSS
1.2%
EPSS 83% 7.3 CVSS 9.0
CRITICAL POC KEV PATCH THREAT Act Now

Gladinet CentreStack contains a deserialization vulnerability caused by a hardcoded machineKey in the portal, allowing unauthenticated remote code execution through crafted ViewState payloads.

RCE Deserialization Centrestack
NVD
EPSS 1% CVSS 7.2
HIGH POC This Week

An unrestricted file upload vulnerability in the administrative portal branding component of Gladinet CentreStack before 13.5.9808 allows authenticated attackers to execute arbitrary code by. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Centrestack
NVD
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

An authentication bypass vulnerability in the Password Reset component of Gladinet CentreStack before 13.5.9808 allows remote attackers to set a new password for any valid user account, without. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Centrestack
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy