CVE-2026-34019

MEDIUM 5.3

BIG-IP BFD vulnerability

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to stop processing BFD packets and cause the configured routing protocol to fail over. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CWE	CWE-410
Vendor	f5
Product	big-ip
Published	May 13, 2026
Last Updated	May 13, 2026

Stay Ahead of the Next One

Get instant alerts for f5 big-ip

Be the first to know when new medium vulnerabilities affecting f5 big-ip are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Affected Versions

F5 / BIG-IP

17.5.0 < 17.5.1 17.1.0 < 17.1.3 16.1.0 < *

References

NVD ↗ CVE.org ↗ EPSS Data ↗

my.f5.com: https://my.f5.com/manage/s/article/K000150508

CVE-2026-34019

BIG-IP BFD vulnerability

Get instant alerts for f5 big-ip

CVSS v3 Breakdown

Affected Versions

References

Credits