CVE-2026-41940 describes an authentication bypass vulnerability in certain versions of cPanel and WHM, which could allow unauthenticated remote attackers to gain unauthorized access to the control panel.

VMware NSX

• Broadcom is aware of CVE-2026-41940
  
  
• Refer to the release notes for existing and forthcoming product releases for any updates in relation to this/these CVE/CVEs.
  
  
• Should you require further information please contact Broadcom Support using the process at Creating and managing Broadcom cases