CVE-2026-32673

medium F5
CVSS v3 Base Score
6.5
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Confidentiality
High
Integrity
High
Availability
None
Published: May 13, 2026 (0 days ago)
Last Modified: May 14, 2026
Vendor: F5
Source: MITRE

Description

A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource Administrator or Administrator role to execute arbitrary system commands with higher privileges. In appliance mode deployments, a successful exploit can allow the attacker to cross a security boundary.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CWE

CWE-250

Affected Products

F5 BIG-IP

References

🔗 my.f5.com