{"id":22675,"date":"2026-05-06T16:41:48","date_gmt":"2026-05-06T16:41:48","guid":{"rendered":"https:\/\/www.webhosting.uk.com\/kb\/?p=22675"},"modified":"2026-05-07T13:43:34","modified_gmt":"2026-05-07T13:43:34","slug":"cpanel-security-advisory-cve-2026-41940-critical","status":"publish","type":"post","link":"https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/","title":{"rendered":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)"},"content":{"rendered":"<h2 data-section-id=\"rzkdgm\" data-start=\"181\" data-end=\"192\"><strong>Overview<\/strong><\/h2>\n<p data-start=\"194\" data-end=\"313\">On 28th April 2026, a critical security vulnerability affecting cPanel and WHM (CVE-2026-41940) was publicly disclosed.<\/p>\n<p data-start=\"315\" data-end=\"494\">This advisory explains the nature of the vulnerability, the actions we took to secure affected systems, and the steps we recommend customers take to review their own environments.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"k8aecn\" data-start=\"501\" data-end=\"530\"><strong>What is the vulnerability?<\/strong><\/h2>\n<p data-start=\"532\" data-end=\"791\">This vulnerability affects the authentication mechanism within cPanel and WHM and could allow an unauthenticated remote attacker to gain unauthorised administrative access to the control panel, potentially including root-level access to the underlying server.<\/p>\n<p data-start=\"793\" data-end=\"938\">The vulnerability carries a CVSS score of <strong data-start=\"835\" data-end=\"863\">9.8 out of 10 (Critical)<\/strong> and affected all versions of cPanel and WHM prior to the patched releases.<\/p>\n<p data-start=\"940\" data-end=\"1044\">For a full list of affected and patched versions, please refer to the official <a href=\"https:\/\/support.cpanel.net\/hc\/en-us\/articles\/40073787579671-Security-CVE-2026-41940-cPanel-WHM-WP2-Security-Update-04-28-2026\" target=\"_blank\" rel=\"noopener\">cPanel security advisory.<\/a><\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"ihcozy\" data-start=\"1051\" data-end=\"1066\"><strong>Our response<\/strong><\/h2>\n<p data-start=\"1068\" data-end=\"1131\">We acted immediately upon public disclosure on 28th April 2026:<\/p>\n<ul data-start=\"1133\" data-end=\"1594\">\n<li data-section-id=\"izwcxx\" data-start=\"1133\" data-end=\"1201\">Initial mitigations were applied as soon as the issue became known<\/li>\n<li data-section-id=\"vc7rxd\" data-start=\"1202\" data-end=\"1310\">An official patch was released later the same evening and automatically deployed across our infrastructure<\/li>\n<li data-section-id=\"xukdrh\" data-start=\"1311\" data-end=\"1365\">The majority of servers updated without intervention<\/li>\n<li data-section-id=\"l2sbgp\" data-start=\"1366\" data-end=\"1480\">Where access permitted, any servers that did not update automatically were manually patched or otherwise secured<\/li>\n<li data-section-id=\"16hrwnd\" data-start=\"1481\" data-end=\"1594\">In a small number of cases, access to cPanel ports was temporarily restricted until patching could be completed<\/li>\n<\/ul>\n<p data-start=\"1596\" data-end=\"1681\">Where we have been able to verify patch status, all systems are confirmed as updated.<\/p>\n<p data-start=\"1683\" data-end=\"1870\">For servers outside of our direct management, we strongly recommend customers verify their patch status against the<a href=\"https:\/\/support.cpanel.net\/hc\/en-us\/articles\/40073787579671-Security-CVE-2026-41940-cPanel-WHM-WP2-Security-Update-04-28-2026\" target=\"_blank\" rel=\"noopener\"> cPanel security advisory<\/a> to confirm they are running a patched version.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"bcehsf\" data-start=\"1877\" data-end=\"1913\"><strong>Current status and ongoing checks<\/strong><\/h2>\n<p data-start=\"1915\" data-end=\"2155\">Following disclosure, reports from some hosting providers suggest this vulnerability may have been exploited prior to the public announcement on 28th April 2026, though the full extent and timeline of any prior exploitation remains unclear.<\/p>\n<p data-start=\"2157\" data-end=\"2344\">Post-exploitation activity observed across the wider hosting industry following this disclosure has included the deployment of ransomware, cryptocurrency miners, and persistent backdoors.<\/p>\n<p data-start=\"2346\" data-end=\"2597\">We have identified a small number of customer servers within our infrastructure that have been affected by ransomware, and those customers are being contacted directly. We are continuing to carry out thorough checks across all systems as a precaution.<\/p>\n<p data-start=\"2599\" data-end=\"2792\">These checks are designed to identify common indicators of compromise; however, they cannot guarantee detection in all scenarios, particularly where activity may have been concealed or removed.<\/p>\n<p data-start=\"2794\" data-end=\"2973\">It is also important to note that certain activity within individual hosting accounts, such as uploaded files, may not always be fully visible through platform-level checks alone.<\/p>\n<p data-start=\"2975\" data-end=\"3211\">Given that this vulnerability was potentially exploited as a zero-day prior to any public disclosure or patch being available, some activity may have occurred before any provider, including us, could have been aware of or acted upon it.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"ug4d0x\" data-start=\"3218\" data-end=\"3254\"><strong>Recommended actions for customers<\/strong><\/h2>\n<p data-start=\"3256\" data-end=\"3375\">As an additional precaution, we recommend customers review their own environments for any signs of unexpected activity.<\/p>\n<p data-start=\"3377\" data-end=\"3391\">In particular:<\/p>\n<ul data-start=\"3393\" data-end=\"4149\">\n<li data-section-id=\"13d1npu\" data-start=\"3393\" data-end=\"3546\">Review user accounts and access logs within cPanel and WHM, paying particular attention to any activity prior to the patch being applied to your server<\/li>\n<li data-section-id=\"jzb3j2\" data-start=\"3547\" data-end=\"3691\">Check for unfamiliar files, including any files with a <span class=\"inline-code\">.sorry<\/span> extension which may indicate ransomware activity related to this vulnerability<\/li>\n<li data-section-id=\"ltbwb3\" data-start=\"3692\" data-end=\"3765\">Check for unfamiliar or unauthorised cron jobs or configuration changes<\/li>\n<li data-section-id=\"r1fz35\" data-start=\"3766\" data-end=\"3825\">Verify any recently added or unfamiliar API tokens in WHM<\/li>\n<li data-section-id=\"1k4pljx\" data-start=\"3826\" data-end=\"3893\">Check for any unknown or unauthorised user accounts on the server<\/li>\n<li data-section-id=\"h0g4zz\" data-start=\"3894\" data-end=\"3967\">Review SSH authorised keys on all accounts for any unrecognised entries<\/li>\n<li data-section-id=\"107jmg2\" data-start=\"3968\" data-end=\"4019\">Check the sudoers file for any unexpected entries<\/li>\n<li data-section-id=\"4gbmjp\" data-start=\"4020\" data-end=\"4081\">Update all passwords (cPanel, WHM, SSH, FTP, and databases)<\/li>\n<li data-section-id=\"17pz95y\" data-start=\"4082\" data-end=\"4149\">Review any recent file uploads or changes within hosting accounts<\/li>\n<\/ul>\n<p data-start=\"4151\" data-end=\"4232\">If anything appears unfamiliar or unexpected, it should be investigated promptly.<\/p>\n<p data-start=\"4234\" data-end=\"4371\">If indicators of compromise are found, rebuilding from clean backups is strongly recommended over attempting to clean an affected system.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"1k7tqju\" data-start=\"4378\" data-end=\"4388\"><strong>Support<\/strong><\/h2>\n<p data-start=\"4390\" data-end=\"4510\">If you would like assistance reviewing your server or investigating any findings, our support team is available to help.<\/p>\n<p data-start=\"4512\" data-end=\"4621\">If you identify any unusual activity, please raise a support ticket and we will prioritise the investigation.<\/p>\n<p data-start=\"4623\" data-end=\"4717\">We will continue to monitor the situation and provide updates to this advisory where relevant.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-section-id=\"by138m\" data-start=\"4724\" data-end=\"4737\"><em><strong>Disclaimer<\/strong><\/em><\/h2>\n<p data-start=\"4739\" data-end=\"4852\"><em>The information in this advisory is provided in good faith based on information available at the time of writing.<\/em><\/p>\n<p data-start=\"4854\" data-end=\"4964\"><em>The threat landscape around this vulnerability continues to evolve and we recommend checking back for updates.<\/em><\/p>\n<p data-start=\"4966\" data-end=\"5160\" data-is-last-node=\"\" data-is-only-node=\"\"><em>Nothing in this advisory constitutes legal or compliance advice. Customers with specific concerns regarding data protection or regulatory obligations should seek independent professional advice.<\/em><\/p>\n<p><strong>Source:<\/strong> <a href=\"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/\">https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Overview On 28th April 2026, a critical security vulnerability affecting cPanel and WHM (CVE-2026-41940) was publicly disclosed. This advisory explains the nature of the vulnerability, the actions we took to&hellip;<\/p>\n<p><a href=\"https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/\" class=\"more-link\">Read More<\/a><\/p>\n<div class='heateorSssClear'><\/div><div  class='heateor_sss_sharing_container heateor_sss_horizontal_sharing' data-heateor-sss-href='https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/'><div class='heateor_sss_sharing_title' style=\"font-weight:bold\" >Spread the love<\/div><div class=\"heateor_sss_sharing_ul\"><a aria-label=\"Facebook\" class=\"heateor_sss_facebook\" href=\"https:\/\/www.facebook.com\/sharer\/sharer.php?u=https%3A%2F%2Fwww.webhosting.uk.com%2Fkb%2Fcpanel-security-advisory-cve-2026-41940-critical%2F\" title=\"Facebook\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg\" style=\"background-color:#0765FE;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path fill=\"#fff\" d=\"M28 16c0-6.627-5.373-12-12-12S4 9.373 4 16c0 5.628 3.875 10.35 9.101 11.647v-7.98h-2.474V16H13.1v-1.58c0-4.085 1.849-5.978 5.859-5.978.76 0 2.072.15 2.608.298v3.325c-.283-.03-.775-.045-1.386-.045-1.967 0-2.728.745-2.728 2.683V16h3.92l-.673 3.667h-3.247v8.245C23.395 27.195 28 22.135 28 16Z\"><\/path><\/svg><\/span><\/a><a aria-label=\"X\" class=\"heateor_sss_button_x\" href=\"https:\/\/twitter.com\/intent\/tweet?text=cPanel%20Security%20Advisory%20%E2%80%93%20CVE-2026-41940%20%28Critical%29&url=https%3A%2F%2Fwww.webhosting.uk.com%2Fkb%2Fcpanel-security-advisory-cve-2026-41940-critical%2F\" title=\"X\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_x\" style=\"background-color:#2a2a2a;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg width=\"100%\" height=\"100%\" style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" viewBox=\"0 0 32 32\"><path fill=\"#fff\" d=\"M21.751 7h3.067l-6.7 7.658L26 25.078h-6.172l-4.833-6.32-5.531 6.32h-3.07l7.167-8.19L6 7h6.328l4.37 5.777L21.75 7Zm-1.076 16.242h1.7L11.404 8.74H9.58l11.094 14.503Z\"><\/path><\/svg><\/span><\/a><a aria-label=\"Linkedin\" class=\"heateor_sss_button_linkedin\" href=\"https:\/\/www.linkedin.com\/sharing\/share-offsite\/?url=https%3A%2F%2Fwww.webhosting.uk.com%2Fkb%2Fcpanel-security-advisory-cve-2026-41940-critical%2F\" title=\"Linkedin\" rel=\"nofollow noopener\" target=\"_blank\" style=\"font-size:32px!important;box-shadow:none;display:inline-block;vertical-align:middle\"><span class=\"heateor_sss_svg heateor_sss_s__default heateor_sss_s_linkedin\" style=\"background-color:#0077b5;width:40px;height:40px;display:inline-block;opacity:1;float:left;font-size:32px;box-shadow:none;display:inline-block;font-size:16px;padding:0 4px;vertical-align:middle;background-repeat:repeat;overflow:hidden;padding:0;cursor:pointer;box-sizing:content-box\"><svg style=\"display:block;\" focusable=\"false\" aria-hidden=\"true\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"100%\" height=\"100%\" viewBox=\"0 0 32 32\"><path d=\"M6.227 12.61h4.19v13.48h-4.19V12.61zm2.095-6.7a2.43 2.43 0 0 1 0 4.86c-1.344 0-2.428-1.09-2.428-2.43s1.084-2.43 2.428-2.43m4.72 6.7h4.02v1.84h.058c.56-1.058 1.927-2.176 3.965-2.176 4.238 0 5.02 2.792 5.02 6.42v7.395h-4.183v-6.56c0-1.564-.03-3.574-2.178-3.574-2.18 0-2.514 1.7-2.514 3.46v6.668h-4.187V12.61z\" fill=\"#fff\"><\/path><\/svg><\/span><\/a><\/div><div class=\"heateorSssClear\"><\/div><\/div><div class='heateorSssClear'><\/div>","protected":false},"author":41,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[880],"tags":[],"class_list":["post-22675","post","type-post","status-publish","format-standard","hentry","category-cpanel"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.7 (Yoast SEO v27.7) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>cPanel Security Advisory \u2013 CVE-2026-41940 (Critical) - WHUK<\/title>\n<meta name=\"description\" content=\"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)\" \/>\n<meta property=\"og:description\" content=\"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/\" \/>\n<meta property=\"og:site_name\" content=\"Webhosting UK Knowledge Base\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/webhostingukcom\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-06T16:41:48+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-05-07T13:43:34+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2026\/05\/How-to-resolve-cPanel-Git-error-code-128-\u2018Permission-Denied-issue-1200.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Robert King\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2026\/05\/How-to-resolve-cPanel-Git-error-code-128-\u2018Permission-Denied-issue-1200.png\" \/>\n<meta name=\"twitter:creator\" content=\"@WebhostingUKcom\" \/>\n<meta name=\"twitter:site\" content=\"@WebhostingUKcom\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.eukhost.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940-critical\\\/\"},\"author\":{\"name\":\"Robert King\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#\\\/schema\\\/person\\\/72033a868a07c9fd0bd3efd0348ae12c\"},\"headline\":\"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)\",\"datePublished\":\"2026-05-06T16:41:48+00:00\",\"dateModified\":\"2026-05-07T13:43:34+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940-critical\\\/\"},\"wordCount\":730,\"publisher\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#organization\"},\"articleSection\":[\"cPanel &amp; WHM\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940-critical\\\/\",\"url\":\"https:\\\/\\\/www.eukhost.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940\\\/\",\"name\":\"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical) - WHUK\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#website\"},\"datePublished\":\"2026-05-06T16:41:48+00:00\",\"dateModified\":\"2026-05-07T13:43:34+00:00\",\"description\":\"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.eukhost.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.eukhost.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.eukhost.com\\\/kb\\\/cpanel-security-advisory-cve-2026-41940\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#website\",\"url\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/\",\"name\":\"Webhosting UK Knowledge Base\",\"description\":\"Expert Insights on Hosting, Development, Security, Marketing, and SEO\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#organization\"},\"alternateName\":\"WHUK\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#organization\",\"name\":\"Webhosting UK\",\"alternateName\":\"WHUK\",\"url\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/WHUK-logo-1.png\",\"contentUrl\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/WHUK-logo-1.png\",\"width\":1200,\"height\":628,\"caption\":\"Webhosting UK\"},\"image\":{\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/webhostingukcom\",\"https:\\\/\\\/x.com\\\/WebhostingUKcom\",\"https:\\\/\\\/www.youtube.com\\\/c\\\/webhostinguk\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/webhosting-uk-com-ltd\\\/\",\"https:\\\/\\\/www.instagram.com\\\/webhosting_uk\\\/\",\"https:\\\/\\\/www.tiktok.com\\\/@webhostinguk\"],\"description\":\"Fast, reliable, and cost-effective website hosting services with Webhosting UK. Committed to providing you secure support around the clock.\",\"email\":\"sales@webhosting.uk.com\",\"telephone\":\"0800 862 0890\",\"legalName\":\"Webhosting UK\",\"foundingDate\":\"2001-02-07\",\"numberOfEmployees\":{\"@type\":\"QuantitativeValue\",\"minValue\":\"51\",\"maxValue\":\"200\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.webhosting.uk.com\\\/kb\\\/#\\\/schema\\\/person\\\/72033a868a07c9fd0bd3efd0348ae12c\",\"name\":\"Robert King\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g\",\"caption\":\"Robert King\"},\"sameAs\":[\"https:\\\/\\\/www.webhosting.uk.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical) - WHUK","description":"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/","og_locale":"en_GB","og_type":"article","og_title":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)","og_description":"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.","og_url":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/","og_site_name":"Webhosting UK Knowledge Base","article_publisher":"https:\/\/www.facebook.com\/webhostingukcom","article_published_time":"2026-05-06T16:41:48+00:00","article_modified_time":"2026-05-07T13:43:34+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2026\/05\/How-to-resolve-cPanel-Git-error-code-128-\u2018Permission-Denied-issue-1200.png","type":"image\/png"}],"author":"Robert King","twitter_card":"summary_large_image","twitter_image":"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2026\/05\/How-to-resolve-cPanel-Git-error-code-128-\u2018Permission-Denied-issue-1200.png","twitter_creator":"@WebhostingUKcom","twitter_site":"@WebhostingUKcom","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/#article","isPartOf":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/"},"author":{"name":"Robert King","@id":"https:\/\/www.webhosting.uk.com\/kb\/#\/schema\/person\/72033a868a07c9fd0bd3efd0348ae12c"},"headline":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)","datePublished":"2026-05-06T16:41:48+00:00","dateModified":"2026-05-07T13:43:34+00:00","mainEntityOfPage":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/"},"wordCount":730,"publisher":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/#organization"},"articleSection":["cPanel &amp; WHM"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.webhosting.uk.com\/kb\/cpanel-security-advisory-cve-2026-41940-critical\/","url":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/","name":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical) - WHUK","isPartOf":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/#website"},"datePublished":"2026-05-06T16:41:48+00:00","dateModified":"2026-05-07T13:43:34+00:00","description":"cPanel CVE-2026-41940 critical security advisory covering our response, mitigation steps, ongoing monitoring, and customer recommendations.","breadcrumb":{"@id":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.eukhost.com\/kb\/cpanel-security-advisory-cve-2026-41940\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.webhosting.uk.com\/kb\/"},{"@type":"ListItem","position":2,"name":"cPanel Security Advisory \u2013 CVE-2026-41940 (Critical)"}]},{"@type":"WebSite","@id":"https:\/\/www.webhosting.uk.com\/kb\/#website","url":"https:\/\/www.webhosting.uk.com\/kb\/","name":"Webhosting UK Knowledge Base","description":"Expert Insights on Hosting, Development, Security, Marketing, and SEO","publisher":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/#organization"},"alternateName":"WHUK","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.webhosting.uk.com\/kb\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.webhosting.uk.com\/kb\/#organization","name":"Webhosting UK","alternateName":"WHUK","url":"https:\/\/www.webhosting.uk.com\/kb\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.webhosting.uk.com\/kb\/#\/schema\/logo\/image\/","url":"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2023\/08\/WHUK-logo-1.png","contentUrl":"https:\/\/www.webhosting.uk.com\/kb\/wp-content\/uploads\/2023\/08\/WHUK-logo-1.png","width":1200,"height":628,"caption":"Webhosting UK"},"image":{"@id":"https:\/\/www.webhosting.uk.com\/kb\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/webhostingukcom","https:\/\/x.com\/WebhostingUKcom","https:\/\/www.youtube.com\/c\/webhostinguk","https:\/\/www.linkedin.com\/company\/webhosting-uk-com-ltd\/","https:\/\/www.instagram.com\/webhosting_uk\/","https:\/\/www.tiktok.com\/@webhostinguk"],"description":"Fast, reliable, and cost-effective website hosting services with Webhosting UK. Committed to providing you secure support around the clock.","email":"sales@webhosting.uk.com","telephone":"0800 862 0890","legalName":"Webhosting UK","foundingDate":"2001-02-07","numberOfEmployees":{"@type":"QuantitativeValue","minValue":"51","maxValue":"200"}},{"@type":"Person","@id":"https:\/\/www.webhosting.uk.com\/kb\/#\/schema\/person\/72033a868a07c9fd0bd3efd0348ae12c","name":"Robert King","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/secure.gravatar.com\/avatar\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e120ed7102e1fbc85bafc57b4d2bdef0c5ad562bc95e6b616e5cb5dcd30b9cfd?s=96&d=mm&r=g","caption":"Robert King"},"sameAs":["https:\/\/www.webhosting.uk.com"]}]}},"_links":{"self":[{"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/posts\/22675","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/comments?post=22675"}],"version-history":[{"count":13,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/posts\/22675\/revisions"}],"predecessor-version":[{"id":22691,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/posts\/22675\/revisions\/22691"}],"wp:attachment":[{"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/media?parent=22675"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/categories?post=22675"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.webhosting.uk.com\/kb\/wp-json\/wp\/v2\/tags?post=22675"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}