CVE-2026-42937
CVE-2026-42937 affects BIG-IP and BIG-IQ, with incorrect permission assignments in TMOS Shell (tmsh) for arp/ndp and in iControl REST. An authenticated attacker can view adjacent network information via remote iControl REST or local tmsh, a purely control-plane issue with no data-plane exposure. ...