CVE-2026-41953 F5 CVE debrief

Who should care

Organizations using BIG-IP systems, particularly those with highly privileged users, should be aware of this vulnerability. The vulnerability requires a highly privileged, authenticated attacker, and the impact is privilege escalation. F5 has provided mitigation guidance for this issue.

Technical summary

The vulnerability exists in BIG-IP systems where a highly privileged, authenticated attacker with at least the Resource Administrator role can modify configuration objects resulting in privilege escalation. The CVSS vector for this vulnerability is CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. The weakness associated with this vulnerability is CWE-77.

Defensive priority

This vulnerability has a high CVSS score of 8.5 and requires immediate attention. Organizations should apply mitigation guidance provided by F5 as soon as possible.

Recommended defensive actions

• Apply mitigation guidance provided by F5.
• Restrict access to highly privileged users.
• Monitor BIG-IP systems for suspicious activity.
• Ensure that BIG-IP systems are running with the latest software version.
• Implement compensating controls to detect and prevent privilege escalation.

Evidence notes

The CVE record and NVD detail provide information on the vulnerability, including its CVSS score and vector. F5 has provided mitigation guidance for this issue. The vulnerability requires a highly privileged, authenticated attacker, and the impact is privilege escalation.

Official resources