Millions of websites managed by cPanel are at risk of being hacked

According to Bkav experts, CVE-2023-29489 is one of the typical web vulnerabilities, allowing hackers to steal user data such as information, access sessions... allowing command execution and remote control of web servers.

The vulnerability affects cPanel management ports 2080, 2082, 2083, 2086 and applications running on default web service ports 80 and 443. This means that millions of websites managed by cPanel are at risk of being attacked, especially when the exploit code (PoC) has been published.

Mr. Nguyen Van Cuong, Director of Cyber ​​Security of Bkav said: "cPanel is a website hosting management software, with more than 1.4 million installations connected to the internet. A cPanel manages from one to many websites, so the scope of influence will be very wide."

Bkav recorded that in Vietnam there were more than 2,500 installations of cPanel software. Given the serious impact of this vulnerability, Bkav recommends that units using cPanel should immediately do the following:

• Immediately update to versions: 11.109.9999.116; 11.108.0.13; 11.106.0.18; 11.102.0.31.
• Set up automatic updates for cPanel.
• At the same time, units using cPanel software, on both web systems running on ports 80 and 433, need to review the entire system to promptly detect and handle attacks.