2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software

cPanel, a provider of popular administrative tools to manage web hosting, has patched a security vulnerability that could have allowed remote attackers with access to valid credentials to bypass two-factor authentication (2FA) protection on an account.
The issue, tracked as « SEC-575 » and discovered by researchers from Digital Defense, has been remedied by the company in versions 11.92.0.2,
Source de l’article sur The Hacker News