CVE Alert: CVE-2025-61990 – F5 – BIG-IP
CVE-2025-61990 HIGHNo exploitation known When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic...
f5
CVE Alert: CVE-2025-57780 – F5 – F5OS – Appliance
CVE-2025-57780 HIGHNo exploitation known A vulnerability exists in F5OS-A and F5OS-C system that may allow an authenticated attacker with local...
CVE Alert: CVE-2025-58071 – F5 – BIG-IP
CVE-2025-58071 HIGHNo exploitation known When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel...
CVE Alert: CVE-2025-61935 – F5 – BIG-IP
CVE-2025-61935 HIGHNo exploitation known When a BIG IP Advanced WAF or ASM security policy is configured on a virtual server,...
CVE Alert: CVE-2025-60016 – F5 – BIG-IP
CVE-2025-60016 HIGHNo exploitation known When Diffie-Hellman (DH) group Elliptic Curve Cryptography (ECC) Brainpool curves are configured in an SSL profile's...
CVE Alert: CVE-2025-59481 – F5 – BIG-IP
CVE-2025-59481 HIGHNo exploitation known A vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command that may...
CVE Alert: CVE-2025-59781 – F5 – BIG-IP
CVE-2025-59781 HIGHNo exploitation known When DNS cache is configured on a BIG-IP or BIG-IP Next CNF virtual server, undisclosed DNS...
CVE Alert: CVE-2025-59778 – F5 – F5OS – Chassis
CVE-2025-59778 HIGHNo exploitation known When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane, undisclosed traffic...
CVE Alert: CVE-2025-61938 – F5 – BIG-IP
CVE-2025-61938 HIGHNo exploitation known When a BIG-IP Advanced WAF or ASM security policy is configured with a URL greater than...
CVE Alert: CVE-2025-55669 – F5 – BIG-IP
CVE-2025-55669 HIGHNo exploitation known When the BIG-IP Advanced WAF and ASM security policy and a server-side HTTP/2 profile are configured...
CVE Alert: CVE-2025-59478 – F5 – BIG-IP
CVE-2025-59478 HIGHNo exploitation known When a BIG-IP AFM denial-of-service (DoS) protection profile is configured on a virtual server, undisclosed requests...
CVE Alert: CVE-2025-58120 – F5 – BIG-IP Next SPK
CVE-2025-58120 HIGHNo exploitation known When HTTP/2 Ingress is configured, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note:...
CVE Alert: CVE-2025-58096 – F5 – BIG-IP
CVE-2025-58096 HIGHNo exploitation known When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can...
CVE Alert: CVE-2025-55036 – F5 – BIG-IP
CVE-2025-55036 HIGHNo exploitation known When BIG-IP SSL Orchestrator explicit forward proxy is configured on a virtual server and the proxy...
CVE Alert: CVE-2025-53868 – F5 – BIG-IP
CVE-2025-53868 HIGHNo exploitation known When running in Appliance mode, a highly privileged authenticated attacker with access to SCP and SFTP...
CVE Alert: CVE-2025-54858 – F5 – BIG-IP
CVE-2025-54858 HIGHNo exploitation known When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content...
CVE Alert: CVE-2025-54854 – F5 – BIG-IP
CVE-2025-54854 HIGHNo exploitation known When a BIG-IP APM OAuth access profile (Resource Server or Resource Client) is configured on a...
CVE Alert: CVE-2025-54479 – F5 – BIG-IP
CVE-2025-54479 HIGHNo exploitation known When a classification profile is configured on a virtual server without an HTTP or HTTP/2 profile,...
CVE Alert: CVE-2025-53521 – F5 – BIG-IP
CVE-2025-53521 HIGHNo exploitation known When a BIG-IP APM Access Policy is configured on a virtual server, undisclosed traffic can cause...
CVE Alert: CVE-2025-53856 – F5 – BIG-IP
CVE-2025-53856 HIGHNo exploitation known When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object...
CVE Alert: CVE-2025-48008 – F5 – BIG-IP
CVE-2025-48008 HIGHNo exploitation known When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server, undisclosed...
CVE Alert: CVE-2025-53474 – F5 – BIG-IP
CVE-2025-53474 HIGHNo exploitation known When an iRule using an ILX::call command is configured on a virtual server, undisclosed traffic can cause...
CVE Alert: CVE-2025-46706 – F5 – BIG-IP
CVE-2025-46706 HIGHNo exploitation known When an iRule containing the HTTP::respond command is configured on a virtual server, undisclosed requests can...
CVE Alert: CVE-2025-41430 – F5 – BIG-IP
CVE-2025-41430 HIGHNo exploitation known When BIG-IP SSL Orchestrator is enabled, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to...
