A critical Remote Code Execution vulnerability has been patched in Imunify360 AV, a security product protecting approximately 56 million websites worldwide.
Hosting companies must apply the patch immediately to prevent potential server compromises.
The vulnerability details began circulating in late October 2024, prompting urgent recommendations for affected hosting providers to verify the integrity of their servers.
Despite the severity, Imunify360’s team has not released an official statement, and no CVE identifier has been assigned.
https://gbhackers.com/critical-imunify3 ... erability/