ГлавнаяУязвимости → CVE-2025-12480
9.1критическая

CVE-2025-12480

→ есть в БДУ: BDU:2025-14010 (на русском)
Описание (на английском; русское — в БДУ выше)

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete.

Затрагиваемое ПО
Gladinet Triofox
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://access.triofox.com/releases_history/https://cloud.google.com/blog/topics/threat-intelligence/triofox-vulnerability-cve-2025-12480https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2025/MNDT-2025-0008.mdhttps://www.triofox.com/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-12480