CVE Vulnerabilities

CVE-2017-18399

Published: Aug 02, 2019 | Modified: Aug 13, 2019
CVSS 3.x
3.7
LOW
Source:
NVD
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

cPanel before 68.0.15 allows attackers to read roots crontab file during a short time interval upon enabling or disabling sqloptimizer (SEC-332).

Affected Software

Name Vendor Start Version End Version
Cpanel Cpanel 61.9999.55 (including) 62.0.35 (excluding)
Cpanel Cpanel 63.9999.74 (including) 64.0.42 (excluding)
Cpanel Cpanel 65.9999.38 (including) 66.0.34 (excluding)
Cpanel Cpanel 67.9999.64 (including) 68.0.15 (excluding)

References