cPanel and WHM Arbitrary File Read Vulnerability in feature::LOADFEATUREFILE Adminbin Call
Vulnerability
A vulnerability allowing arbitrary file read has been identified in cPanel and WHM WP2. The issue arises from insufficient input validation of the feature file name in the feature::LOADFEATUREFILE adminbin call. This vulnerability allows relative file paths to be passed as arguments, making arbitrary files world-readable.
Impact
Exploitation of this vulnerability leads to unauthorized reading of files on the server, potentially exposing sensitive information.
Remediation
Users can update to cPanel & WHM versions 11.136.0.9 and higher, 11.134.0.25 and higher, 11.132.0.31 and higher, 11.130.0.22 and higher, 11.126.0.58 and higher, 11.124.0.37 and higher, 11.118.0.66 and higher, 11.110.0.116 and higher, 11.110.0.117 and higher, 11.102.0.41 and higher, 11.94.0.30 and higher, or 11.86.0.43 and higher. For those on CentOS 6 or CloudLinux 6, cPanel v110.0.114 is available as a direct update. To upgrade, run a command to set the upgrade tier and follow the required actions to complete the update.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.