5.4
/ 10
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
Description
A cross-site request forgery (CSRF) vulnerability exists in the dashboard of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Basic Information
ID
CVE-2026-40703
Source
f5
Published
May 13, 2026 at 14:12
Affected Product
Vendor
F5
Product
BIG-IP
Version
21.0.0
Affected Versions
F5 BIG-IP 17.5.0
F5 BIG-IP 17.1.0
F5 BIG-IP 16.1.0
F5 BIG-IP 17.1.0
F5 BIG-IP 16.1.0