CVE-2025-43878 F5OS-A/C CLI vulnerability

🗓️ 07 May 2025 22:04:08Reported by f5Type

Authenticated attacker can bypass Appliance mode restrictions using tcpdump on F5OS appliances.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2025-43878	7 May 202522:15	–	attackerkb
Circl	CVE-2025-43878	7 May 202522:23	–	circl
CNNVD	F5 F5OS 安全漏洞	7 May 202500:00	–	cnnvd
CVE	CVE-2025-43878	7 May 202522:04	–	cve
EUVD	EUVD-2025-13943	3 Oct 202520:07	–	euvd
F5 Networks	K000139502: F5OS vulnerability CVE-2025-43878	7 May 202512:33	–	f5
F5 Networks	K000151008: Quarterly Security Notification (May 2025)	7 May 202513:44	–	f5
NVD	CVE-2025-43878	7 May 202522:15	–	nvd
OSV	CVE-2025-43878	7 May 202522:15	–	osv
Positive Technologies	PT-2025-20310 · F5 · F5Os-C/A	7 May 202500:00	–	ptsecurity

[
  {
    "defaultStatus": "unknown",
    "product": "F5OS - Appliance",
    "vendor": "F5",
    "versions": [
      {
        "lessThan": "1.8.0",
        "status": "affected",
        "version": "1.5.1",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "product": "F5OS - Chassis",
    "vendor": "F5",
    "versions": [
      {
        "lessThan": "1.8.0",
        "status": "affected",
        "version": "1.6.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
my	www.my.f5.com/manage/s/article/K000139502

07 May 2025 22:04Current

CVSS 3.16

CVSS 48.3

EPSS0.00138