A critical security vulnerability has been identified in cPanel that may allow attackers to gain unauthorized access to the control panel by affecting the authentication process. Due to this serious vulnerability, some hosting providers have temporarily blocked access to TCP ports 2083 and 2087.
Security updates have been released for the following versions / the issue has been resolved in these versions:
11.110.0.97
11.118.0.63
11.126.0.54
11.132.0.29
11.136.0.5
11.134.0.20
If your license is original or your license provider supports upgrades to the latest versions, be sure to run the following command:
/scripts/upcp --force
Note: You are responsible for any issues that may arise from the upgrade command. It is recommended that you seek support from your system administrator or license provider.
Q: Which version should cPanel be upgraded to?
A: Any of the versions listed above that is closest to your current version, or the latest version, currently 11.136.0.5.
Q: How can I check the current cPanel version via SSH?
A: Use the following command:
cat /usr/local/cpanel/version
Q: Which command should I use to upgrade the version?
A:
/scripts/upcp --force
Security updates have been released for the following versions / the issue has been resolved in these versions:
11.110.0.97
11.118.0.63
11.126.0.54
11.132.0.29
11.136.0.5
11.134.0.20
If your license is original or your license provider supports upgrades to the latest versions, be sure to run the following command:
/scripts/upcp --force
Note: You are responsible for any issues that may arise from the upgrade command. It is recommended that you seek support from your system administrator or license provider.
Q: Which version should cPanel be upgraded to?
A: Any of the versions listed above that is closest to your current version, or the latest version, currently 11.136.0.5.
Q: How can I check the current cPanel version via SSH?
A: Use the following command:
cat /usr/local/cpanel/version
Q: Which command should I use to upgrade the version?
A:
/scripts/upcp --force
