Liquid Web incident

Security Advisory: Linux Privilege Escalation Vulnerability (CVE-2026-31431)

Liquid Web is currently experiencing a major incident affecting Cloud Dedicated and Cloud VPS Hosting and 1 more component, which began 1h ago. The vendor's full update timeline is below.

Started: May 11, 2026, 10:12 PM UTC
Resolved: Ongoing
Duration: ● 1h 4m
Detected by Pingoru: May 11, 2026, 10:12 PM UTC

Affected components

Cloud DedicatedCloud VPS HostingCPanel

Update timeline

identified May 11, 2026, 10:12 PM UTC

A recently disclosed Linux vulnerability (CVE-2026-31431), sometimes referred to as “Copy Fail,” affects certain Linux distributions and may allow a local, unprivileged user to escalate privileges under specific conditions. This issue has been classified as high severity. Status Our security and operations teams have completed an assessment of our infrastructure and have applied all relevant vendor patches and mitigations to affected systems. Impact No evidence of exploitation has been identified within our environment Systems under our management have been patched or otherwise mitigated Customer Guidance Customers managing their own systems or using unmanaged services should ensure they have applied the latest security updates provided by their Linux distribution and review any related vendor advisories. We will continue monitoring this vulnerability and will provide updates if new information becomes available.