ГлавнаяУязвимости → CVE-2025-53856
7.5высокая

CVE-2025-53856

Описание

When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object uses the embedded Packet Velocity Acceleration (ePVA) feature, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  To determine which BIG-IP platforms have an ePVA chip refer to K12837: Overview of the ePVA feature https://my.f5.com/manage/s/article/K12837 .  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Затрагиваемое ПО
F5 Big-ip access policy managerF5 Big-ip advanced firewall managerF5 Big-ip advanced web application firewallF5 Big-ip analyticsF5 Big-ip application acceleration managerF5 Big-ip application security managerF5 Big-ip application visibility and reportingF5 Big-ip automation toolchainF5 Big-ip carrier-grade natF5 Big-ip container ingress servicesF5 Big-ip ddos hybrid defenderF5 Big-ip domain name systemF5 Big-ip edge gatewayF5 Big-ip fraud protection serviceF5 Big-ip global traffic managerF5 Big-ip link controllerF5 Big-ip local traffic managerF5 Big-ip policy enforcement managerF5 Big-ip ssl orchestratorF5 Big-ip webacceleratorF5 Big-ip websafe
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://my.f5.com/manage/s/article/K000156707