cPanel before 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).
References
Link | Resource |
---|---|
https://documentation.cpanel.net/display/CL/68+Change+Log | Product Release Notes |
https://news.cpanel.com/cpanel-tsr-2017-0006-full-disclosure/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-08-02 07:15
Updated : 2019-08-13 07:18
NVD link : CVE-2017-18396
Mitre link : CVE-2017-18396
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
cpanel
- cpanel