ID CVE-2019-17375
Summary cPanel before 82.0.15 allows API token credentials to persist after an account has been renamed or terminated (SEC-517).
References
Vulnerable Configurations
  • cPanel 81.9999.242
    cpe:2.3:a:cpanel:cpanel:81.9999.242
  • cPanel 81.9999.247
    cpe:2.3:a:cpanel:cpanel:81.9999.247
  • cPanel 82.0.0
    cpe:2.3:a:cpanel:cpanel:82.0.0
  • cPanel 82.0.2
    cpe:2.3:a:cpanel:cpanel:82.0.2
  • cPanel 82.0.3
    cpe:2.3:a:cpanel:cpanel:82.0.3
  • cPanel 82.0.4
    cpe:2.3:a:cpanel:cpanel:82.0.4
  • cPanel 82.0.5
    cpe:2.3:a:cpanel:cpanel:82.0.5
  • cPanel 82.0.6
    cpe:2.3:a:cpanel:cpanel:82.0.6
CVSS
Base: 6.5
Impact:
Exploitability:
CWE CWE-613
CAPEC
Last major update 09-10-2019 - 12:21
Published 09-10-2019 - 12:15
Last modified 11-10-2019 - 09:40
Back to Top