Published on August 2nd, 2019 📆 | 5137 Views ⚑0
cPanel up to 68.0.14 dovecot-xaps-plugin Format privilege escalation
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability was found in cPanel up to 68.0.14 (Hosting Control Software) and classified as critical. This issue affects an unknown part of the component dovecot-xaps-plugin. The manipulation with an unknown input leads to a privilege escalation vulnerability (Format). Using CWE to declare the problem leads to CWE-269. Impacted is confidentiality, integrity, and availability.
The weakness was shared 08/02/2019. The advisory is shared at documentation.cpanel.net. The identification of this vulnerability is CVE-2017-18389 since 07/31/2019. Neither technical details nor an exploit are publicly available.
Upgrading to version 68.0.15 eliminates this vulnerability.
VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.3
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
0-Day unlock unlock unlock unlock Today unlock unlock unlock unlock
0-Day Time: 🔒
Upgrade: cPanel 68.0.15
Created: 08/02/2019 10:18 PM
Use the official API to access entries easily!