Impact: Low
CVE: CVE-2026-31431
Version(s): 4.x
First published: 26 May 2026
Last updated: 26 May 2026

Copy Fail

We are aware of the high profile ‘Copy Fail’ vulnerability which impacts all Linux kernel versions since 2017 (CVE-2026-31431).

It is important to note that this vulnerability requires local access to a system to be exploited, something that would require an issue with the running micro-services or associated services to have been exposed and exploited in the first instance. The vast majority of our micro-services all run with allowPrivilegeEscalation set to false which further lows the potential risk.

However given the volatile nature of cyber security, and to ensure we continue to meet high levels of security and transparency we have made available a mitigation playbook which can be applied to a running VQCM instance. This will require a restart of VQCM VM for the mitigation to take effect, and will disable the vulnerable Linux kernel module

If you have any questions about this CVE, please email security@vqcomms.com

To request access to the playbook, please email support@vqcomms.com

Latest news

Cisco Live 2026: Blending innovation with resilience

News
Published May 26, 2026

VQ’s Monthly News – April 2026

News
Published May 1, 2026

VQ Communications Launches VQ Conference Manager 4.8 with Advanced Conferencing Center

News
Published April 16, 2026