5 matches found
CVE-2026-42058
An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2026-42058 BIG-IP iControl REST vulnerability
An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2026-42058
CVE-2026-42058 affects BIG-IP iControl REST. An authenticated attacker can make undisclosed requests to iControl REST and leak usernames of BIG-IP local user accounts. Impact is limited to control plane; no data-plane exposure reported. CVSS scores: v3.1 base 4.3 (MEDIUM) with NETWORK attack vect...
EUVD-2024-39167
Malicious code in bioql PyPI...
CVE-2025-23239
CVE-2025-23239 affects BIG-IP iControl REST. In Appliance mode, an authenticated user with high privileges can exploit an undisclosed iControl REST endpoint to execute arbitrary commands, crossing a security boundary. Impact is command injection on the control plane with administrator-like privil...