VulnerabilityBleeping Computer
9.0 — CRITICAL
cPanel, WHM emergency update fixes critical auth bypass bug
A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be exploited to obtain access to the control panel without authentication. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
A critical authentication bypass vulnerability was discovered in cPanel and WHM, allowing unauthorized access to control panels without authentication, posing significant risks to website owners and hosting providers.
⚙️Technical Details
Affected Systems
cPanelWebHost Manager (WHM)
Attack Vectors
Authentication login exploit
💥Impact Assessment
Severity: critical
Who Is at Risk
Website owners using affected management interfacesHosting providers with cPanel and WHM installedSeverity: critical
🛡️Recommended Actions
1Update to a patched version of cPanel (versions 11.110.0.97, 11.118.0.63, etc.)
2Run the command /scripts/upcp –force to install a safe version
3Upgrade to a supported version as soon as possible
📦Affected Products
cPanelWebHost Manager (WHM)
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.