CVE-2026-20730 | THREATINT

Description

A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows that may allow attackers to gain access to sensitive information. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

PUBLISHED Reserved 2026-01-21 | Published 2026-02-04 | Updated 2026-02-04 | Assigner f5

LOW: 3.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

LOW: 2.0CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

Product status

Default status

unknown

7.2.5 (custom) before 7.2.6.2

affected

Credits

F5 finder

References

my.f5.com/manage/s/article/K000158931 vendor-advisory

cve.org (CVE-2026-20730)

nvd.nist.gov (CVE-2026-20730)

Download JSON