CVE-2024-54679: CyberPanel (aka Cyber Panel) before 6778ad1 does not require the FilemanagerAdmin capability for restartMySQL actions.
4.3
CVSS
Description
CyberPanel (aka Cyber Panel) before 6778ad1 does not require the FilemanagerAdmin capability for restartMySQL actions.
Classification
CVE ID: CVE-2024-54679
CVSS Base Severity: MEDIUM
CVSS Base Score: 4.3
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.05% (probability of being exploited)
EPSS Percentile: 17.85% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)
References
https://cyberpanel.net/https://github.com/usmannasir/cyberpanel/commit/6778ad1eaae41f72365da8fd021f9a60369600dc