H3-2025-0060¶

Gladinet Centrestack MachineKey Deserialization Vulnerability


Category	`VULNERABILITY`
Base Score	`9.8`

Description¶

This weakness abuses the deserialization of MachineKey variables, which were previously leaked from the Gladinet Centrestack installation via other means.

Impact¶

Unauthenticated attackers with access to these variables can execute arbitrary code on the server.

References¶

MITRE ATT&CK Technique: T1190: Exploit Public-Facing Application