This vulnerability arises from a chmod operation in the cPanel Nova plugin's Cpanel::Nova::Connector component that improperly follows symbolic links (CWE-61). An authenticated user can exploit this by creating a symlink at a legacy Nova path under their home directory, causing the chmod call to apply root permissions to arbitrary system files or directories. The affected versions include multiple releases of cPanel from 11.86.0.0 through 11.136.0.0. The CVSS 5.3 score reflects a medium severity with network attack vector, low attack complexity, and requiring low privileges but no user interaction.

Successful exploitation allows an authenticated cPanel user to escalate privileges locally or cause denial of service by setting root permissions on arbitrary files or directories. This could compromise system integrity or availability. No known exploits in the wild have been reported, and the vulnerability requires authenticated access with low privileges.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict authenticated user access to trusted users only and monitor for suspicious activity related to symbolic link creation in legacy Nova paths. Avoid placing symlinks in user-controlled legacy Nova directories to reduce risk.