F5 BIG-IP iControl REST command injection (May 2026 Quarterly, CVSS 8.7)

cve · CVE-2026-41953

Coverage timeline

first 2026-05-17 → last 2026-05-17

Briefs

1 distinct

Sources cited

4 hosts

Sections touched

—

Co-occurring entities

no co-occurrence

Story timeline

2026-05-17CTI Daily Brief — 2026-05-17

Source distribution

advisories.ncsc.nl2 (40%)
cwe.mitre.org1 (20%)
my.f5.com1 (20%)
securityweek.com1 (20%)

External references

NVD · cve.org · CISA KEV

All cited sources (5)

advisories.ncsc.nlprimaryinlineNCSC-NL NCSC-2026-0162, 2026-05-15https://advisories.ncsc.nl/advisory?id=NCSC-2026-0162
source profile · cited in 2026-05-16
advisories.ncsc.nlprimaryinlineNCSC-NL NCSC-2026-0162, 2026-05-15https://advisories.ncsc.nl/csaf/v2/2026/ncsc-2026-0162.json
source profile · cited in 2026-05-17
cwe.mitre.orginlineCWE-648https://cwe.mitre.org/data/definitions/648.html
cited in 2026-05-17
my.f5.cominlineF5 K000160932, 2026-05-14https://my.f5.com/manage/s/article/K000160932
cited in 2026-05-17
securityweek.cominlineSecurityWeek, 2026-05-14https://www.securityweek.com/f5-patches-over-50-vulnerabilities/
source profile · cited in 2026-05-17

Items in briefs about F5 BIG-IP iControl REST command injection (May 2026 Quarterly, CVSS 8.7)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.