A vulnerability classified as problematic was found in F5 BIG-IP, BIG-IP Next SPK, BIG-IP Next CNF and BIG-IP Next for Kubernetes . Impacted is the function HTTP::redirect/HTTP::respond of the component Traffic Management Microkernel . Such manipulation leads to null pointer dereference. This vulnerability is documented as CVE-2026-42409 . The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.