Summary
Active online exploitation of the vulnerabilities CVE-2024-51568, CVE-2024-51567 and CVE-2024-51378 has been detected for the CyberPanel product, a web hosting control panel. These vulnerabilities appear to be affected by a recent PSAUX ransomware distribution campaign.
Risk
Estimate of the vulnerability’s impact on the reference community: HIGH/ORANGE (69.23/100)1.
Type
- Remote Code Execution
Affected products and versions
CyberPanel, versions prior to 2.3.7 (patched)
Mitigation Actions
If not already done, it is recommended to update the vulnerable products following the instructions in the security bulletin reported in the References section.
Unique Vulnerability Indicators
References