cPanel’s authentication bypass bug is being exploited in the wild, CISA warns
ATT&CK techniques detected
T1190Exploit Public-Facing Application
93%
"cpanel ’ s authentication bypass bug is being exploited in the wild, cisa warns a severe authentication bypass vulnerability in cpanel, one of the most widely deployed web hosting control panel platforms on the internet, is being actively exploited in the wild, according to secur…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
49%
"to its known exploited vulnerabilities ( kev ) list thursday. cybersecurity firm watchtowr provided technical details in a blog posted wednesday : the flaw stems from improper handling of user input during the login process. when a user attempts to log in, cpanel writes data from…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
The agency added the flaw to the KEV list days after hosting providers confirmed active, ongoing attacks.
The post cPanel’s authentication bypass bug is being exploited in the wild, CISA warns appeared first on CyberScoop.