A serious security flaw was identified in the AI-Bolit component of Imunify products, enabling attackers to execute arbitrary code with root privileges through a flawed deobfuscation process. This vulnerability stems from the scanner’s handling of unfiltered input from files and databases, specifically through the deobfuscateDeltaOrd and deobfuscateEvalHexFunc PHP functions that could execute malicious code directly.
As of October 23, 2025, Imunify released a patch to address these issues, adding strict controls to ensure that only safe functions are executed. Imunify has not observed any real-world exploitation of this vulnerability, and users are urged to update their AI-Bolit component promptly. To maximize security, it’s essential for users to maintain automatic updates, thereby protecting against potential attacks that may exploit this critical vulnerability in the future.
👉 Pročitaj original: Cyber Security News
