CVE-2025-43878

Summary

When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system. 

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected Software

VendorProductVersion RangeStatus
F5F5OS - Appliance1.5.1 < 1.8.0affected
F5F5OS - Chassis1.6.0 < 1.8.0affected

Weaknesses

  • CWE-149: CWE-149: Improper Neutralization of Quoting Syntax
  • CWE-1286: CWE-1286: Improper Validation of Syntactic Correctness of Input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References