CVE-2025-21087 – F5 BIG-IP TMM Vulnerability

Severity

High

Analysis Summary

CVE-2025-21087

When Client or Server SSL profiles are configured on a Virtual Server, or DNSSEC signing operations are in use, undisclosed traffic can cause an increase in memory and CPU resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

Impact

Denial of Service

Indicators of Compromise

CVE

CVE-2025-21087

Affected Vendors

Affected Products

F5 BIG-IP - 17.1.0
F5 BIG-IP - 15.1.0
F5 BIG-IP - 16.1.0
F5 BIG-IP Next 20.0.0

Remediation

Refer to F5 Website for patch, upgrade, or suggested workaround information.

F5 Website

Tofsee Malware – Active IOCs

CoinMiner Malware – Active IOCs

CVE-2025-21087 – F5 BIG-IP TMM Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan