Vulnerabilities > CVE-2017-18446 - Out-of-bounds Write vulnerability in Cpanel

047910
CVSS 6.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
LOW
network
low complexity
cpanel
CWE-787

Summary

cPanel before 64.0.21 allows file-read and file-write operations for demo accounts via the SourceIPCheck API (SEC-250).

Vulnerable Configurations

Part Description Count
Application
Cpanel
216

Common Weakness Enumeration (CWE)