CVE-2026-40631 — An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objects through iControl SOAP resulting in privilege escalation. Note: Software versions which — CVE Database · The Intelligence Room