High severity8.1NVD Advisory· Published May 13, 2026· Updated May 13, 2026
CVE-2026-20916
CVE-2026-20916
Description
An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisclosed iControl REST endpoint on the BIG-IQ system. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.