Hi Elements Hosters 
Recently two critical CVEs (critical vulnerabilities) were published that are making the rounds on various tech and security news/blog sites. I wanted to take a moment to let you know how this affects us, and how we have mitigated these two CVEs so our customers’ accounts, websites, and data are safe and protected from these specific exploits.
First
CVE-2026-41940 - Could allow unauthenticated remote attackers to gain unauthorised access to the affected cPanel management console.
Elements Hosting Mitigation - Simple, we don’t use cPanel or WHM, so this CVE didn’t affect our hosting platform at all. 
However, for all of those who haven’t moved over to Elements Hosting yet, and are still on web hosts that are using cPanel/WHM, you should probably reach out to them and ask them if they have applied the necessary patches to protect your account, websites, and personal data! 
Second
CVE-2026-31431 - (dubbed “Copy Fail”) affects all Linux kernel builds since 2017, and could allow a local, unprivileged attacker to escalate privileges to root.
Elements Hosting Mitigation - We have implemented the mitigation listed on the official Ubuntu blog here Fixes available for CVE-2026-31431 (Copy Fail) Linux Kernel Local Privilege Escalation Vulnerability | Ubuntu and have verified successful installation of that mitigation across our server fleet.
Conclusion
We are committed to making sure our hosting infrastructure is updated as quickly as possible against the latest security threats and exploits so that our customers’ accounts, websites, and data are safe and protected. 
If you have any questions feel free to let us know, otherwise keep calm and carry on building your best websites with Elements, the best website builder for Mac! 