BIG-IP Privilege Escalation: CVE-2026-41953 Allows Resource Admin to Root

The National Vulnerability Database has detailed CVE-2026-41953, a high-severity privilege escalation vulnerability impacting BIG-IP systems. This flaw allows a highly privileged, authenticated attacker holding at least the Resource Administrator role to modify critical configuration objects. The result is a direct path to privilege escalation, a dangerous scenario for internal security.

Rated with a CVSS score of 8.7 (HIGH), this vulnerability is concerning because it leverages an existing high-level account. An attacker who has already compromised a Resource Administrator account doesn’t need to find a new exploit path; they can simply chain this vulnerability to gain higher privileges. The National Vulnerability Database specifies the vector as CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N, indicating network accessibility, low attack complexity, and high impact on confidentiality and integrity, with no availability impact.

While specific affected product versions were not detailed by the National Vulnerability Database, organizations running BIG-IP should assume they are at risk until proven otherwise. This is a classic example of CWE-77, where an attacker can inject commands or manipulate existing configurations. The attacker’s calculus here is clear: an insider threat, or an external attacker who has already gained a foothold, now has a straightforward path to deeper system control.