CVE-2026-20916

HIGH NVD

CVSS Score 8.1

Severity HIGH

Published May 13, 2026

Vendor unknown

Description

An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisclosed iControl REST endpoint on the BIG-IQ system. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

References

https://my.f5.com/manage/s/article/K000158029