H3-2025-0060

Gladinet Centrestack MachineKey Deserialization Vulnerability


Category	`VULNERABILITY`
Base Score	`9.8`

Description

This weakness abuses the deserialization of MachineKey variables, which were previously leaked from the Gladinet Centrestack installation via other means.

Impact

Unauthenticated attackers with access to these variables can execute arbitrary code on the server.

References

MITRE ATT&CK Technique: T1190: Exploit Public-Facing Application