CVE-2025-1695 – F5 NGINIX Vulnerability

Severity

Medium

Analysis Summary

CVE-2025-1695

In NGINX Unit with the Java Language Module in use, undisclosed requests can lead to an infinite loop and cause an increase in CPU resource utilization. This vulnerability allows a remote attacker to cause a degradation that can lead to a limited denial-of-service (DoS). There is no control plane exposure; this is a data plane issue only. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Impact

Denial of Service

Indicators of Compromise

CVE

CVE-2025-1695

Affected Vendors

Affected Products

F5 Nginx 1.29.1 - 1.34.2
F5 Nginx Unit - 1.11.0 - 1.34.2

Remediation

Refer to F5 Security Advisory for patch, upgrade, or suggested workaround information.

F5 Security Advisory

ICS: Schneider Electric Modicon Controllers Vulnerability

Multiple Intel Products Vulnerabilities

CVE-2025-1695 – F5 NGINIX Vulnerability

Severity

Medium

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan