cPanel contains a flaw in the configure customer contact interface in WHM that leads to unauthorized privileges being gained. The issue is triggered when handling a specially crafted custom contact program, which can allow a remote attacker to bypass jailshell restricts and gain elevated privileges.
Remote / Network Access
Loss of Integrity
It has been reported that this issue has been fixed. Upgrade to version 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, or higher, to address this vulnerability.