Description
When embedded Packet Velocity Acceleration (ePVA) acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel (TMM) resource utilization.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Published: 2026-05-13
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows locally generated Ethernet traffic to trigger an increase in Packet Velocity Acceleration (ePVA) activity and Traffic Management Microkernel (TMM) resource consumption. This reflects a flaw in the system’s control of internal resource usage (CWE‑835). When exploited, the increased resource demand can degrade performance or potentially cause a denial of service, without directly affecting data confidentiality or integrity.

Affected Systems

Affected systems are F5 BIG‑IP devices. No specific product versions are listed in the vendor data, so the impact applies to all F5 BIG‑IP installations that have ePVA acceleration enabled and for which End of Technical Support status is not reached.

Risk and Exploitability

The CVSS score of 7.1 indicates moderate to high severity, but the EPSS score is unavailable and the vulnerability is not listed in the CISA KEV catalog. Attackers would need to inject local Ethernet traffic that can reach the affected BIG‑IP, implying a local or network‑proximity threat. The lack of public exploitation data suggests the risk is primarily theoretical, yet the resource‑exhaustion nature warrants monitoring and mitigation.

Generated by OpenCVE AI on May 13, 2026 at 17:16 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Disable the ePVA acceleration feature on any BIG‑IP virtual servers that do not require it to prevent unnecessary resource spikes.
  • Continuously monitor the Traffic Management Microkernel and ePVA usage metrics for sudden increases that could indicate exploitation.
  • Apply any security patches or updates released by F5 for BIG‑IP that address this issue as soon as they become available.

Generated by OpenCVE AI on May 13, 2026 at 17:16 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared F5
F5 big-ip
Vendors & Products F5
F5 big-ip

Wed, 13 May 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 13 May 2026 15:15:00 +0000

Type Values Removed Values Added
Description When embedded Packet Velocity Acceleration (ePVA) acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel (TMM) resource utilization.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Title BIG-IP FastL4 virtual server vulnerability
Weaknesses CWE-835
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

F5 Big-ip
cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published:

Updated: 2026-05-13T16:15:08.246Z

Reserved: 2026-04-30T23:02:47.666Z

Link: CVE-2026-42781

cve-icon Vulnrichment

Updated: 2026-05-13T16:15:01.301Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-13T16:16:48.447

Modified: 2026-05-13T16:27:11.127

Link: CVE-2026-42781

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T18:30:46Z

Weaknesses