Dear Customer,

We are contacting you regarding newly disclosed security vulnerabilities affecting certain versions of cPanel & WHM and potentially impacting Linux-based hosting environments in general.

The vulnerabilities identified are:

  • CVE-2026-29201

  • CVE-2026-29202

  • CVE-2026-29203

According to information released by the cPanel security team, patches are being distributed through the standard update channels beginning May 08, 2026.

If your server is running cPanel & WHM, we strongly recommend ensuring your system is fully updated as soon as possible.

Recommended Actions:

  1. Verify your server update configuration.
    Ensure automatic updates are enabled or that your system is not pinned to an outdated release tier.

  2. Perform a manual cPanel update.
    Once patches are available, you may run:

    /scripts/upcp --force

  3. Update the operating system packages.
    We also recommend updating the underlying Linux operating system and installed packages using your distribution’s package manager.

  4. Review unsupported systems.
    Servers running unsupported or end-of-life operating systems should be upgraded as soon as possible, as security patches may not be available.

  5. CloudLinux 6 users.
    If you are still operating CloudLinux 6 environments, special update instructions may apply before performing the update process.

For customers using unmanaged VPS or dedicated servers:
Please note that system maintenance and patch management remain under your administrative responsibility unless you have an active managed service agreement with us.

As always, we strongly recommend maintaining current backups before applying major system or control panel updates.

If you require assistance reviewing or updating your server, our support team is available to assist you.

Best regards,

The Team at CCIHosting.com

 



Friday, May 8, 2026

« Back