CVE-2025-58424
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-15
Last updated on: 2026-02-04
Assigner: F5 Networks
Description
Description
On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data modification in protocols which do not have message integrity protection.Β Β Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| f5 | big-ip_access_policy_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_advanced_firewall_manager | From 16.1.0 (inc) to 16.1.5.2.0.7.5 (inc) |
| f5 | big-ip_advanced_web_application_firewall | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_analytics | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_application_acceleration_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_application_security_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_application_visibility_and_reporting | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_automation_toolchain | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_carrier-grade_nat | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_container_ingress_services | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_ddos_hybrid_defender | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_domain_name_system | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_edge_gateway | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_fraud_protection_service | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_global_traffic_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_link_controller | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_local_traffic_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_policy_enforcement_manager | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_ssl_orchestrator | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_webaccelerator | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_websafe | From 15.1.0 (inc) to 15.1.10.8 (exc) |
| f5 | big-ip_access_policy_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_advanced_web_application_firewall | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_analytics | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_application_acceleration_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_application_security_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_application_visibility_and_reporting | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_automation_toolchain | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_carrier-grade_nat | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_container_ingress_services | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_ddos_hybrid_defender | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_domain_name_system | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_edge_gateway | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_fraud_protection_service | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_global_traffic_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_link_controller | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_local_traffic_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_policy_enforcement_manager | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_ssl_orchestrator | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_webaccelerator | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_websafe | From 16.1.0 (inc) to 16.1.6 (exc) |
| f5 | big-ip_access_policy_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_advanced_web_application_firewall | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_analytics | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_application_acceleration_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_application_security_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_application_visibility_and_reporting | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_automation_toolchain | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_carrier-grade_nat | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_container_ingress_services | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_ddos_hybrid_defender | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_domain_name_system | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_edge_gateway | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_fraud_protection_service | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_global_traffic_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_link_controller | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_local_traffic_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_policy_enforcement_manager | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_ssl_orchestrator | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_webaccelerator | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_websafe | From 17.1.0 (inc) to 17.1.2 (inc) |
| f5 | big-ip_advanced_firewall_manager | From 16.1.0 (inc) to 16.1.5.2.0.7.5 (inc) |
| f5 | big-ip_advanced_firewall_manager | From 16.1.0 (inc) to 16.1.5.2.0.7.5 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-340 | The product uses a scheme that generates numbers or identifiers that are more predictable than required. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability affects BIG-IP systems where certain traffic that is not disclosed can cause data corruption and unauthorized modification of data in protocols that lack message integrity protection.
How can this vulnerability impact me? :
The vulnerability can lead to data corruption and unauthorized modification of data, potentially compromising the integrity of communications and data handled by BIG-IP systems.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70