We are aware of the recently disclosed zero-day vulnerability CVE-2026-41940 affecting cPanel and WHM.
cPanel is one of the most popular hosting control panels, and there this vulnerability affects millions of websites.
This vulnerability is a critical authentication bypass issue in cPanel/WHM that could allow an unauthenticated attacker to gain unauthorized access to affected control panel environments.
Workhorse does not use cPanel or WHM in our hosting or server management stack. Because this vulnerability applies specifically to cPanel/WHM environments, our managed hosting infrastructure was not affected by CVE-2026-41940.
No customer action is required for Workhorse-managed hosting environments. We will continue monitoring vendor advisories and relevant security intelligence, and we will notify customers if any issue is found to affect our infrastructure or services.