Main Vulnerability Database Vulnerabilities #VU132249

Incorrect Privilege Assignment in LiteSpeed User-End cPanel Plugin and LiteSpeed WHM Plugin - CVE-2026-48172

Published: May 25, 2026

Vulnerability identifier: #VU132249

CSH Severity: Critical

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/U:Red

CVE-ID: CVE-2026-48172

CWE-ID: CWE-266

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: LiteSpeed Technologies

Affected software:
LiteSpeed User-End cPanel Plugin
LiteSpeed WHM Plugin

Detailed vulnerability description

The vulnerability allows a remote user to compromise the affected system.

The vulnerability exists due to incorrect privilege assignment. A remote authenticated cPanel user can abuse the lsws.redisAble function to execute arbitrary scripts as root.

Note, the vulnerability is being actively exploited in the wild.

How to mitigate CVE-2026-48172

Install updates from vendor's website.

Incorrect Privilege Assignment in LiteSpeed User-End cPanel Plugin and LiteSpeed WHM Plugin - CVE-2026-48172

Detailed vulnerability description

How to mitigate CVE-2026-48172

Sources

Please verify you're human