Source: Bleeping Computer
Summary
A critical vulnerability in cPanel and WHM web hosting software has been disclosed, and hackers are actively targeting and hacking websites. The vulnerability allows for remote code execution, which can lead to full system compromise. Patches are being rolled out, but the attacks continue.
Our Reading
The launch follows a familiar script.
cPanel and WHM, a popular web hosting software, has a critical vulnerability that’s being actively exploited by hackers. The vulnerability allows for remote code execution, which is being used to hack websites. Patches are being rolled out, but the attacks continue. Because what’s new is old: another day, another zero-day.
Vulnerability Details
The vulnerability, disclosed just days ago, affects cPanel and WHM versions 106, 108, 86, and 88. It allows for remote code execution, which can lead to full system compromise.
Attacks and Exploitation
Hackers are actively targeting and hacking websites using this vulnerability. The attacks are ongoing, even as patches are being rolled out.
Patches and Updates
cPanel and WHM are rolling out patches to address the vulnerability. Users are advised to update their software as soon as possible.
Conclusion
This is not the first time a critical vulnerability has been found in popular software, and it won’t be the last. The cycle of vulnerability disclosure, exploitation, and patching continues.
Author: Evan Null
