Security Advisory

Plesk Product Security Update Advisory (CVE-2025-54336)

  • Aug 28 2025
Plesk Product Security Update Advisory (CVE-2025-54336)

Overview

 

We have released a security update that fixes vulnerabilities in Plesk products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-54336

 

Plesk Obsidian version: 18.0.71 Update 2 and earlier
Plesk Obsidian version: 18.0.70 Update 4 and earlier

 

 

Resolved Vulnerabilities

 

Authentication bypass and brute force vulnerability in the administrator password comparison logic in Plesk Obsidian (CVE-2025-54336)

 

 

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-54336

 

Plesk Obsidian version: 18.0.71 Update 2 
Plesk Obsidian version: 18.0.70 Update 4

 

 

References

 

[1] Vulnerability CVE-2025-54336
https://support.plesk.com/hc/en-us/articles/33785727869847-Vulnerability-CVE-2025-54336

Tags:
Previous Post

Next Post