PT-2026-58865 · Blue Planet+1 · Inventor+6

The Team

·

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-5270

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
An authentication bypass vulnerability exists in certain releases of Ciena Navigator Network Control Suite (NCS), Manage Control Plan (MCP), and Blue Planet products. The issue is caused by improper handling of HTTP request paths and headers, which allows an unauthenticated attacker to manipulate requests in a manner that bypasses authentication and associated audit logging controls.

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-5270

Affected Products

Inventor
Mcp
Navigator Ncs
Orchestration
Planner Plus Onprem
Route Optimization & Analysis
Unified Assurance & Analytics