CVE Vulnerabilities

CVE-2020-10115

Published: Mar 17, 2020 | Modified: Nov 21, 2024
CVSS 3.x
7.2
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
9 HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
root.io logo minimus.io logo echo.ai logo

cPanel before 84.0.20, when PowerDNS is used, allows arbitrary code execution as root via dnsadmin. (SEC-537).

Affected Software

NameVendorStart VersionEnd Version
CpanelCpanel77.9999.110 (including)78.0.45 (excluding)
CpanelCpanel83.9999.115 (including)84.0.20 (excluding)

References