Main Vulnerability Database Vulnerabilities #VU131410

Command injection in BIG-IP - CVE-2026-41953

Published: May 14, 2026

Vulnerability identifier: #VU131410

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2026-41953

CWE-ID: CWE-77

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: F5 Networks

Affected software:
BIG-IP

Detailed vulnerability description

The vulnerability allows a remote user to escalate privileges or bypass Appliance mode restrictions.

The vulnerability exists due to command injection in TMOS when modifying configuration objects through the management port or self IP addresses. A remote privileged user can modify configuration objects to escalate privileges or bypass Appliance mode restrictions.

In Appliance mode deployments, successful exploitation can cross a security boundary. There is no data plane exposure; this is a control plane issue only.

How to mitigate CVE-2026-41953

Install security update from vendor's website.

Sources

https://my.f5.com/manage/s/article/K000160975

Command injection in BIG-IP - CVE-2026-41953

Detailed vulnerability description

How to mitigate CVE-2026-41953

Sources

Please verify you're human