Executive Risk Summary
"An improper access control vulnerability exists in the Cisco Intersight Device Connector for Nutanix Prism Central, allowing an unauthenticated attacker with network access to enumerate cluster metadata and invoke certain cluster maintenance workflows. Successful exploitation may result in disruption of active workloads, leading to loss of service availability within the affected environment."
Anticipated Attack Path
- 1. Network access to the deployment environment
- 2. Sending crafted requests to the exposed API endpoint
- 3. Enumerating cluster metadata and invoking maintenance workflows
Am I Vulnerable?
- Verify the Cisco Intersight Device Connector for Nutanix Prism Central is not exposed to unauthorized networks
- Restrict access to TCP port 7373
- Monitor for suspicious activity on the API endpoint
Operational Audit Arsenal
Target Type Service
Target Asset intersight-device-connector
Standard Path Nutanix Prism Central environment
Manual Verification Required
This is a non-Windows asset (Cisco). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.
Patch Impact Forecast
Reboot Required Unlikely
Potential disruption of active workloads
Internal Work Notes
CVE-2026-5944: Unauthenticated access to Cisco Intersight Device Connector for Nutanix Prism Central may cause service disruption, recommend immediate restriction of access to TCP port 7373 and monitoring for suspicious activity.
Technical Intelligence & Operational Utilities • Delivered Weekly
Intelligence Sources
Related Cisco Threats
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.