High severity8.8NVD Advisory· Published May 13, 2026· Updated May 13, 2026
CVE-2026-41957
CVE-2026-41957
Description
An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
7- F5 Patches Over 50 VulnerabilitiesSecurityWeek · May 14, 2026
- Trellix Source Code Breach Highlights Growing Supply Chain ThreatsDark Reading · May 5, 2026
- Edge Decay: How a Failing Perimeter Is Fueling Modern IntrusionsSentinelOne Labs · Apr 9, 2026
- Risky Business #832 -- Anthropic unveils magical 0day computer GodRisky Business · Apr 8, 2026
- 6th April – Threat Intelligence ReportCheck Point Research · Apr 6, 2026
- NCSC Urges Immediate Patching of F5 BIG-IP BugInfosecurity Magazine · Mar 31, 2026
- Vulnerability affecting F5 BIG-IP APMNCSC UK · Mar 30, 2026