Aqua Vulnerability Database
Get Demo
Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities
CVE-2019-14405
Published:
Jul 30, 2019
| Modified:
Aug 24, 2020
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
6.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVD
https://nvd.nist.gov/vuln/detail/CVE-2019-14405
CWE
https://cwe.mitre.org/data/definitions/.html
cPanel before 78.0.18 allows demo accounts to execute code via securitypolicy.cg (SEC-487).
Affected Software
Name
Vendor
Start Version
End Version
Cpanel
Cpanel
*
78.0.18 (excluding)
References
https://documentation.cpanel.net/display/CL/78+Change+Log
Aqua Container Security