CVE-2026-43633 – hestiacp

CVSS 10 CRITICAL

“Control panel weaknesses with public exploit code can quickly become a server takeover risk.”

hestiacp released patches for two vulnerabilities affecting hestiacp. CVE-2026-43633 has a CVSS score of 10.0, which is Critical severity. CVE-2026-43634 has a CVSS score of 7.5, which is High severity.

The update addresses an unsafe deserialization issue that could allow remote code execution and a separate trust validation weakness. Public proof-of-concept code is available for both issues.

Key Details

Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
CWE Classification: CWE-502

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-43633 – hestiacp

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002