CVE-2025-53856

CWE-7054 documents4 sources
Severity
8.7HIGH
EPSS
0.0%
top 89.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
22
F5 Big-ipF5 Big-ip Access Policy ManagerF5 Big-ip Advanced Firewall Manager+19 more
Timeline
PublishedOct 15

Description

When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object uses the embedded Packet Velocity Acceleration (ePVA) feature, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. To determine which BIG-IP platforms have an ePVA chip refer to K12837: Overview of the ePVA feature https://my.f5.com/manage/s/article/K12837 . Note: Software versions which have reached End of Technical Support (EoTS) are not evaluate

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages22 packages

NVDf5/big-ip_local_traffic_manager15.1.015.1.10.8+3
NVDf5/big-ip_global_traffic_manager15.1.015.1.10.8+2
NVDf5/big-ip_application_acceleration_manager15.1.015.1.10.8+3
NVDf5/big-ip_access_policy_manager15.1.015.1.10.8+3
NVDf5/big-ip_advanced_firewall_manager15.1.015.1.10.8+3

🔴Vulnerability Details

2
GHSA
GHSA-m5hq-gxg5-5f9x: When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object uses the embedded Packet Velocity2025-10-15
CVEList
TMM vulnerability2025-10-15

📋Vendor Advisories

1
F5
CVE-2025-53856: When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object ...2025-10-15