Severity
8.3HIGH
EPSS
0.1%
top 66.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 7
Latest updateMay 8
Description
When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Packages4 packages
🔴Vulnerability Details
2📋Vendor Advisories
1F5▶
CVE-2025-43878: When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role m...↗2025-05-07