Vulnerability Details CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpanel_jsonapi_func=redisAble" /var/cpanel/logs /usr/local/cpanel/logs/ 2>/dev/null in Bash. If you get no output, you have not been hit with exploitation of the vulnerability. If there is output, we recommend you examine the IP addresses in the list, determine if they are valid IP addresses, and if not, block them. To determine damage done, examine the system logs for use by the detected IP addresses. The issue is related to mishandling of Redis enable/disable features. The recommended minimum version is 2.4.7.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.08
EPSS Ranking 92.2%
CVSS Severity
CVSS v3 Score 9.8
Proposed Action
LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.
Ransomware Campaign
Unknown
References
- https://blog.litespeedtech.com/2026/05/21/security-update-for-litespeed-cpanel-plugin/
- https://www.litespeedtech.com/products/litespeed-web-server/control-panel-support/cpanel
- https://www.litespeedtech.com/products/litespeed-web-server/control-panel-support/release-log
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-48172
Products affected by CVE-2026-48172
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.0
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.1.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.1.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.2.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.0.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.1.1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.1.1.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.0.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.0.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.3.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.3.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.3.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.4
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:1.2.5
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.0
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.2.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3.4
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.3.5
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.1.4
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.2.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.3.0.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.0.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.0.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.1.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.1.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.2.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.3.1
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.3.2
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.3.3
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.4
-
cpe:2.3:a:litespeedtech:litespeed_cpanel_plugin:2.4.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.10
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.11
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.12
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.13
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.14
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.14.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.15
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.16
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.5
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.7
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.8
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.1.9
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.0
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.2.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.2.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:2.2.4.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.0.0
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.0.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.0.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.0.1.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.0.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.0
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.0.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.3.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.3.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.3.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.1.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.2.0.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.2.0.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.2.0.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.0.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.5
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.3.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.5
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:3.3.7
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.0
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.10
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.10.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.11
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.11.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.12
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.13
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.14
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.3.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.4.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.5
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.6.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.6.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.7
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.8
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.8.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:4.1.9
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.0
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.0.0.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.0.0.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.0.0.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.1.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.1.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.2.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.2.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.2.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.3.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.5
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.6
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.6.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.6.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.6.3
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.6.4
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.7
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.8
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.8.1
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.8.2
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.2.9
-
cpe:2.3:a:litespeedtech:litespeed_whm_plugin:5.3.0.0