Serial number: AV26-461
Date: May 13, 2026
On May 13, 2026, F5 published security updates for multiple products. Included were updates for the following:
- BIG-IP (all modules) – multiple versions
- BIG-IP APM – multiple versions
- BIG-IP Advanced WAF/ASM – multiple versions
- BIG-IP BIG-IP Advanced WAF/ASM and BIG-IP DDoS Hybrid Defender – multiple versions
- BIG-IP Next CNF – multiple versions
- BIG-IP Next CNF – versions 2.0.0 to 2.0.2, versions 1.1.0 to 1.4.0
- BIG-IP Next CNF – versions 2.0.0 to 2.2.1, versions 1.1.0 to 1.4.1
- BIG-IP Next SPK – versions 2.0.0 to 2.0.2, versions 1.7.0 to 1.7.15
- BIG-IP Next SPK – versions 2.0.0 to 2.0.2, versions 1.7.0 to 1.7.16
- BIG-IP Next SPK – versions 2.0.0 to 2.0.3, versions 1.7.0 to 1.9.2
- BIG-IP Next for Kubernetes – version 2.0.0
- BIG-IP Next for Kubernetes – versions 2.0.0 to 2.1.0
- BIG-IP Next for Kubernetes – versions 2.0.0 to 2.1.1
- BIG-IP PEM – multiple versions
- BIG-IQ Centralized Management – version 8.4.0
- F5 DoS for NGINX – version 4.8.0
- F5 WAF for NGINX – versions 5.9.0 to 5.12.1
- NGINX App Protect DoS – versions 4.3.0 to 4.7.0
- NGINX App Protect WAF – versions 5.1.0 to 5.8.0, versions 4.9.0 to 4.16.0
- NGINX Gateway Fabric – versions 2.0.0 to 2.5.1, versions 1.3.0 to 1.6.2
- NGINX Ingress Controller – multiple versions
- NGINX Instance Manager – versions 2.16.0 to 2.21.1
- NGINX Open Source – versions 1.0.0 to 1.30.0, versions 0.6.27 to 0.9.7
- NGINX Plus – versions R32 to R36
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.