Multiple F5 BIG-IP Products Vulnerabilities

October 22, 2025

Severity

Medium

Analysis Summary

CVE-2025-58424 CVSS:3.7

F5 BIG-IP could allow a remote attacker to bypass security restrictions, caused by predictability problems.

CVE-2025-59781 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by an increase in memory resource utilization flaw when DNS cache is configured on a BIG-IP or BIG-IP Next CNF virtual server.

CVE-2025-46706 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by an increase in memory resource utilization due to a flaw when an iRule containing the HTTP::respond command is configured on a virtual server.

CVE-2025-58153 CVSS:5.9

F5 BIG-IP is vulnerable to a denial of service, caused by a lockup of the HSB in hardware systems with a High-Speed Bridge (HSB) under undisclosed traffic conditions.

CVE-2025-48008 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by a way to terminate Traffic Management Microkernel (TMM), when a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server.

CVE-2025-58474 CVSS:5.3

F5 BIG-IP is vulnerable to a denial of service, caused by an allocation of resources without limits or throttling flaw.

CVE-2025-59478 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by a way to terminate Traffic Management Microkernel (TMM), when protection profile is configured on a virtual server.

CVE-2025-59269 CVSS:6.1

F5 BIG-IP is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Configuration utility page.

CVE-2025-59268 CVSS:5.3

F5 BIG-IP could allow a remote attacker to obtain sensitive information, caused by a configuration utility vulnerability.

CVE-2025-53474 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by a buffer overflow flaw.

Impact