Code execution bug patched in Imunify360 Linux server security suite

A severe PHP deserialization vulnerability leading to code execution has been patched in Imunify360. Discovered by Cisco Talos researcher Marcin ‘Icewall’ Noga, the vulnerability “could cause a deserialization condition with controllable data and then execute arbitrary code,” leaving web servers open to hijacking.