What is CVE-2026-5944?

CVE-2026-5944 is a high-severity vulnerability in Cisco Intersight_device_connector, classified under Missing Authentication for Critical Function. CVSS score: 8.2/10. Published 2026-04-28.

How severe is CVE-2026-5944?

High severity. CVSS v3 base score is 8.2 out of 10.

Auth bypass in Cisco Intersight_device_connector

CVE-2026-5944

An improper access control vulnerability exists in the Cisco Intersight Device Connector for Nutanix Prism Central. The service exposes an API passthrough endpoint on TCP port 7373 that is accessible within the network scope of the deploym…

Vulnerability class: Broken Authentication

EPSS: 0.001 (33.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H.

Affected products

Cisco Intersight_device_connector
Nutanix Cisco Intersight Device Connector For Prism Central — versions 4.3.0

Weakness classification (CWE)

References

2ffdacf6-8681-47df-b023-4f11abd61c1d (vendor-advisory, Third Party Advisory)
2ffdacf6-8681-47df-b023-4f11abd61c1d (release-notes, Product, Third Party Advisory)
2ffdacf6-8681-47df-b023-4f11abd61c1d (Product, Third Party Advisory, x_support)

Frequently asked questions

What is CVE-2026-5944?: CVE-2026-5944 is a high-severity vulnerability in Cisco Intersight_device_connector, classified under Missing Authentication for Critical Function. CVSS score: 8.2/10. Published 2026-04-28.
How severe is CVE-2026-5944?: High severity. CVSS v3 base score is 8.2 out of 10.