cPanel has released three new critical security advisories:
CVE-2026-29201
CVE-2026-29202
CVE-2026-29203
At this time, limited technical information has been made publicly available. cPanel is expected to release security patches on:
May 9, 2026 at 2:00 AM AEST (Melbourne time)
These advisories affect the cPanel platform itself and are impacting hosting providers globally, not isolated environments or individual providers.
As a precautionary measure to protect client data and maintain service integrity, we have temporarily restricted public access to:
Website hosting, email delivery, and live website services will continue operating normally during this period.
A scheduled maintenance window has been planned for:
May 9, 2026 from 2:00 AM to 2:30 AM AEST
During this time, security updates and service restarts will be performed. Brief interruptions to management services may occur while patches are applied.
Once patches have been verified and systems secured, access to affected services will be progressively restored.
We appreciate your understanding as we take proactive measures to ensure platform security and service continuity.
