HIGHVulnerability
Verified
Global

CISA KEV: LiteSpeed cPanel Plugin — LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

·Source: CISA KEV

Updated:

Executive Summary

LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.

Analysis

LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges. Added to CISA Known Exploited Vulnerabilities catalog on 2026-05-26. Remediation due: 2026-05-29.

Indicators of Compromise (1)

CVE (1)
CVE-2026-48172
NVDMITRE CVE
Source Attribution

Originally published by CISA KEV on May 26, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerabilityNEW

Hercle appoints Gabriele Zuliani chief revenue officer

Hercle, the leading institutional cross-border payments infrastructure company, today announced the appointment of Gabriele Zuliani as Chief Revenue Officer. Zuliani joins to drive commercial strategy and revenue growth as Hercle scales its network of 200+ institutional clients, including banks, fintechs, PSPs, and corporate treasuries, across global corridors.

Finextra
MEDIUMVulnerabilityNEW

IBM and Red Hat to create clearinghouse for open source software security

IBM and Red Hat have committed $5 billion to build an enterprise clearinghouse for open source software, with a host of top banks lined up as early adopters.

Finextra
MEDIUMVulnerabilityNEW

AccesPay appoints Johan Jardevall as CEO

AccessPay, the leading bank integration provider, today announced the appointment of Johan Jardevall as Chief Executive Officer. Johan succeeds Anish Kapoor, who will become Chairman.

Finextra