Imunify360’s security vulnerability poses a significant threat to millions of Linux-based websites, allowing potential full system compromise through malicious files. The flaw affects the vulnerable Ai-Bolit malware scanner and has prompted a security patch, though exploitation in the wild is yet to be confirmed. #Imunify360 #CloudLinuxSoftware
Keypoints
- The Imunify360 security product is vulnerable to a flaw that can be exploited to execute arbitrary code.
- The vulnerability impacts the Ai-Bolit malware scanner used in Imunify360 and related products.
- The flaw was patched in October 2024, but no CVE identifier has been assigned yet.
- Hackers could exploit the vulnerability in shared hosting environments to gain extensive access.
- Security experts recommend hosting providers check their systems for signs of compromise.
Read More: https://www.securityweek.com/imunify360-vulnerability-could-expose-millions-of-sites-to-hacking/