Nexcess experienced a minor incident on March 18, 2026 affecting Platform Updates / Other, lasting 6h 5m. The incident has been resolved; the full update timeline is below.
Affected components
Update timeline
- investigating Mar 18, 2026, 04:17 PM UTC
We are aware of recent reports regarding a potential unrestricted file upload vulnerability, commonly referred to as “PolyShell”, affecting Magento and Adobe Commerce. At this time, our teams are actively reviewing our environment to assess any potential impact and determine whether any systems/customer sites may be affected. We will provide further updates as more information becomes available. If you have any questions or concerns. You can reach us through the following channels: Live Chat: https://my.nexcess.net/ Email: Nexcess Support
- resolved Mar 18, 2026, 10:23 PM UTC
We have taken steps to prohibit execution of files exploiting the "PolyShell" unrestricted file upload vulnerability across our managed fleet. If you have any questions or concerns. You can reach us through the following channels: Live Chat: https://my.nexcess.net/ Email: [email protected]