CVE-2026-40435

MEDIUM NVD

CVSS Score 5.3

Severity MEDIUM

Published May 13, 2026

Vendor unknown

Description

When configured, IP-based access restrictions for httpd do not cover all endpoints, which may allow connections from blocked addresses. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

References

https://my.f5.com/manage/s/article/K000156604