"The vulnerability, tracked as CVE-2026-41940, carries a near-worst-case CVSS score of 9.8 and affects all supported versions of cPanel and WHM released after version 11.40."
"By the time cPanel shipped a patch on Tuesday, exploitation was already underway, with hosting provider KnownHost warning customers of successful exploitation attempts."
"A small business owner posting on Reddit said their company had been hit by ransomware after running a standard cPanel setup, with attackers demanding $7,000 to unlock systems."
CISA has added a critical vulnerability in cPanel, tracked as CVE-2026-41940, to its Known Exploited Vulnerabilities list. This flaw affects all supported versions of cPanel and WHM released after version 11.40, with a CVSS score of 9.8. Successful exploitation can grant attackers full control of the server. Hosting providers have reported successful exploitation attempts before patches were available. Anecdotal evidence suggests attackers are using this vulnerability for ransomware attacks, demanding significant sums to unlock compromised systems.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]