Analysis Summary

CVE-2025-57780 CVSS:8.8

F5 F5OS-A and F5OS-C could allow a local authenticated attacker to gain elevated privileges on the system, caused by an execution with unnecessary privileges flaw.

CVE-2025-41430 CVSS:7.5

F5 BIG-IP SSL Orchestrator is vulnerable to a denial of service, caused by a way to terminate Traffic Management Microkernel (TMM), when SSL Orchestrator is enabled.

CVE-2025-61955 CVSS:8.8

F5 F5OS-A and F5OS-C could allow a local authenticated attacker to gain elevated privileges on the system, caused by an Eval injection flaw.

CVE-2025-53868 CVSS:8.7

F5 BIG-IP could allow a remote authenticated attacker to bypass Appliance mode restrictions, caused by an undisclosed commands flaw when running in Appliance mode.

CVE-2025-61951 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by a way to terminate Traffic Management Microkernel (TMM), when a Datagram Transport Layer Security (DTLS) 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hash set to ANY, and the backend server is enabled with DTLS 1.2 and client authentication.

CVE-2025-54479 CVSS:7.5

F5 BIG-IP is vulnerable to a denial of service, caused by a way to terminate Traffic Management Microkernel (TMM), when a classification profile is configured on a virtual server without an HTTP or HTTP/2 profile.

Impact

• Denial of Service
• Security Bypass
• Privilege Escalation

Indicators of Compromise

CVE

• CVE-2025-57780
• CVE-2025-41430
• CVE-2025-61955
• CVE-2025-53868
• CVE-2025-61951
• CVE-2025-54479

Affected Vendors

Remediation

Refer to F5 Security Advisory for patch, upgrade or suggested workaround information.

CVE-2025-57780

CVE-2025-41430

CVE-2025-61955

CVE-2025-53868

CVE-2025-61951

CVE-2025-54479