Security scanners may identify the CA API Gateway appliance as vulnerable to CVE-2026-31431, also known as "Copy Fail." This is a high-severity Linux kernel vulnerability that allows an unprivileged local user to trigger an out-of-bounds write into the shared page cache, potentially leading to local privilege escalation (LPE) to root or container escape.

All Supported versions of API Gateway

The vulnerability exists in the Linux kernel's cryptographic subsystem (algif_aead module). Since the Gateway appliance runs on a Debian-based kernel, it inherits this OS-level vulnerability.

The vulnerability is remediated in the May 2026 Monthly Platform Patch (MPP) which can be downloaded from https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/release-announcements/CA-API-Gateway-Solutions--Patches/3024 .