VDB
CVE-2026-42781
CVE-2026-42781
PUBLISHED
CVSS 6.5 MEDIUM
When embedded Packet Velocity Acceleration (ePVA) acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel (TMM) resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
EPSS 0.03% · 9.7th percentile
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
9.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F5 | BIG-IP | 21.1.0, 21.0.0, 17.5.0 |
Timeline
- May 13, 2026 CVE Published
- May 13, 2026 CVE Updated
- May 15, 2026 Security Advisory
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
References
- https://my.f5.com/manage/s/article/K000160862 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-42781 advisory