Root Account Code Execution Vulnerability in cPanel (SEC-237)

Root Account Code Execution Vulnerability in cPanel (SEC-237)

CVE-2017-18434 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

cPanel before 64.0.21 allows code execution in the context of the root account via a SET_VHOST_LANG_PACKAGE multilang adminbin call (SEC-237).

Learn more about our Web Application Penetration Testing UK.