Thursday, June 30, 2022
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Cybersecurity > cPanel published the TSR-2020-0001 Full Disclosure

cPanel published the TSR-2020-0001 Full Disclosure

Erdem Yasar by Erdem Yasar
January 22, 2020
in Cybersecurity, Web Hosting
3 min read
0 0
0
cPanel published the TSR-2020-0001 Full Disclosure
1
SHARES
48
VIEWS
Share on FacebookShare on TwitterShare on EmailFollow on Google News

cPanel has announced the latest vulnerabilities and their solutions in a post they published.

cPanel has announced the SEC-515, SEC-535, SEC-537, SEC-541, SEC-542, SEC-543, SEC-544, SEC-545, SEC-546, and SEC-547 vulnerabilities. All vulnerabilities are discovered by the cPanel Security Team.

Table of Contents

  • SEC-515
  • SEC-535
  • SEC-537
  • SEC-541
  • SEC-542
  • SEC-543
  • SEC-544
  • SEC-545
  • SEC-546
  • SEC-547

SEC-515

SEC-515 is a vulnerability caused by the temporary character set specification and has a CVSSv3 score of 4.7. In cPanel & WHM API, users can specify a temporary character set to be used for HTTP responses. The changed character set of their response is now expected by most interfaces and APIs. An attacker can be allowed to cause the rendering browser to parse and execute code by this confusion. The issue is resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-535

SEC-535 is a self-stored XSS vulnerability in HTML file editor with a CVSSv3 score of 4.7. The error message displayed by the cPanel HTML file editor when failing to open a file was not encoded adequately. These error messages were vulnerable to manipulation to include HTML markup that would be rendered by the user’s browser. The issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-537

SEC-537 is a vulnerability caused by the arbitrary code execution as root via dnsadmin when using PowerDNS with a CVSSv3 score of 8.2. Additional positional parameters to be injected when calling the pdns_control command was allowed by the name server configuration logic for PowerDNS. A malicious reseller with the clustering ACL to execute arbitrary code on the system was able to inject malicious data into these parameters. The issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-541

In SEC-541 vulnerability, feature and demo restrictions not enforced for WebDisk UAPI calls. CVSSv3 score of SEC-541 is assigned as 5.3. This vulnerability can be described as refactoring of the feature and demo access restriction code removed enforcement of these restrictions on all WebDisk UAPI calls. The issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-542

SEC-542’s CVSSv3 score is assigned as 4.8. In this vulnerability, the API calls available in the Market UAPI namespace did not limit the actions of demo accounts properly. The issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-543

SEC-543’s CVSSv3 score is 4.8. In this vulnerability, restrictions on demo accounts for several Branding API1 and API2 calls were not properly enforced. This allowed demo accounts to read and write arbitrary files on the system in some configurations. The issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-544

SEC-544 is a vulnerability caused by demo account remote code execution via cpsrvd rsync shell. The cPanel server includes rsync remote file transfer functionality. The access controls limiting demo account usage of this functionality was ineffective. A demo account user can execute arbitrary code on the server to abuse this vulnerability. SEC-544’s CVSSv3 score is 8.3 and it is resolved in 11.84.0.20 build.

SEC-545

SEC-545’s CVSSv3 score is the highest one on the list with 9.1. This vulnerability allows root remote code execution for resellers via cpsrvd rsync shell. A reseller was able to execute arbitrary code as the root due to the ineffectiveness of the rsync remote file transfer functionality. The issue is resolved in 11.84.0.20.

SEC-546

SEC-546’s CVSSv3 score is 8.3. In this vulnerability, the “ensure_deps” API will install dependencies according to a configuration file within the application directory when registering a Passenger application. But demo accounts were not restricted from invoking this API call, allowing the execution of arbitrary code on the server. This issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

SEC-547

cPanel has assigned SEC-547 vulnerability a CVSSv3 score of 6.5. In this vulnerability functionality intended to handle JSON POST data submitted in HTTP requests did not apply input filtering required to distinguish file uploads from other form parameters. A malicious webmail or demo account was able to misuse this behavior to delete files on the system. This issue is also resolved in 11.84.0.20 and 11.78.0.45 builds.

Source: 1

See more Cyber Security News


Tags: cPanel
Share1TweetSendShare
Erdem Yasar

Erdem Yasar

Erdem Yasar is a news editor at Cloud7 News. Erdem started his career by writing video game reviews in 2007 for PC World magazine while he was studying computer engineering. In the following years, he focused on software development with various programming languages. After his graduation, he continued to work as an editor for several major tech-related websites and magazines. During the 2010s, Erdem Yasar shifted his focus to cloud computing, hosting, and data centers as they were becoming more popular topics in the tech industry. Erdem Yasar also worked with various industry-leading tech companies as a content creator by writing blog posts and other articles. Prior to his role at Cloud7 News, Erdem was the managing editor of T3 Magazine.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
Wave Business will construct Hillsboro Data Center Ring II

Wave Business will construct Hillsboro Data Center Ring II

Related News

CISA pinpoints the PwnKit threat

CISA pinpoints the PwnKit threat

June 30, 2022 5:50 pm
Attackers has breached AMD network and exfiltrated data

Attackers has breached AMD network and exfiltrated data

June 30, 2022 5:30 pm
What's new in cPanel & WHM 106

What’s new in cPanel & WHM 106?

June 30, 2022 2:32 pm
G-Core Labs cloud achieves PCI DSS certification

G-Core Labs launches stand-alone solution against SYN Flood DDoS attacks

June 30, 2022 10:35 am
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Editor's Choice

Interview with Igor Seletskiy on AlmaLinux

7 best hosting control panels

How to update Linux Kernel without rebooting?

7 best Linux mail servers for 2022

7 best cPanel alternatives for 2022

7 best Linux web browsers for 2022

7 best CentOS alternatives

7 best Linux server distros for 2022

How to scan your server for Log4j (Log4Shell) vulnerability

10 Best Web Hosting Services of 2022

AlmaLinux 8.6 Stable is ready to download

Ubuntu 22.04 LTS is available for download. What is new?

Kali Linux 2022.2 is ready for download

Advertisement

Recent News

  • CISA pinpoints the PwnKit threat
  • Attackers has breached AMD network and exfiltrated data
  • HPE introduced new cloud-native silicon-based servers
  • IBM announces new mainframe available on Cloud
  • What’s new in cPanel & WHM 106?

Our Latest Interview

Interview: Erez Barak, Vice President Observability of Sumo Logic
Interview

Interview: Erez Barak, Vice President Observability of Sumo Logic

by Atalay Kelestemur
November 25, 2021 3:23 am


Cloud7 News is a news source that publishes the latest news, industry news and exclusive interviews on web hosting, cloud computing, data center, cybersecurity and linux.

News Categories

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • Blockchain

Our Free Modules

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2022, Cloud7 News. Latest Cloud Computing, Web Hosting, Data Center Industry and Tech News

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2022, Cloud7 News. Latest Cloud Computing, Web Hosting, Data Center Industry and Tech News

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.