Incident Response Checklist 🚨 Immediate Actions (0-24 hours) Notify all relevant stakeholders about the zero-day vulnerability CVE-2025-11371 and its active exploitation. Implement the recommended mitigation from Huntress by modifying the web.config file as instructed. Increase monitoring of systems running Gladinet CentreStack and Triofox for signs of exploitation. Engage with Gladinet for updates on patch availability and additional mitigation measures. 🔄 Recovery Actions Restore affected systems from clean backups after ensuring they are free of vulnerabilities. Apply any available patches or updates from Gladinet as soon as they are released. Conduct a security audit of systems to verify the removal of the vulnerability. Reinforce security configurations and policies to prevent similar vulnerabilities.
