Imunify360 whitelist issues show why vendor-managed security allowlists need stronger auditability.
Imunify360 is widely used across Linux hosting, WHM and cPanel environments, so stale whitelist data can have a real impact when it overrides local firewall decisions. If an IP is trusted by default, server admins should be able to see why it is trusted, where that trust came from, when it was last reviewed and whether it still makes sense.
The security issue has now been resolved, after decades of misalignment.
Top comments (0)