CVE-2022-44877
CWP Control Web Panel OS Command Injection Vulnerability
⚠ KEVEPSS 94.5%
Description
CWP Control Web Panel (formerly CentOS Web Panel) contains an OS command injection vulnerability that allows remote attackers to execute commands via shell metacharacters in the login parameter.
How to fix CVE-2022-44877
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2022-44877 being exploited?
Yes — CVE-2022-44877 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.