Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-36557

When an HTTP profile with the Enforce RFC Compliance option is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Published

2025-05-07T22:15:20.087

Last Modified

2025-08-06T18:14:59.580

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-120
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application f5 big-ip_access_policy_manager < 16.1.5 Yes
Application f5 big-ip_access_policy_manager < 17.1.2 Yes
Application f5 big-ip_advanced_firewall_manager < 16.1.5 Yes
Application f5 big-ip_advanced_firewall_manager < 17.1.2 Yes
Application f5 big-ip_analytics < 16.1.5 Yes
Application f5 big-ip_analytics < 17.1.2 Yes
Application f5 big-ip_application_acceleration_manager < 16.1.5 Yes
Application f5 big-ip_application_acceleration_manager < 17.1.2 Yes
Application f5 big-ip_application_security_manager < 16.1.5 Yes
Application f5 big-ip_application_security_manager < 17.1.2 Yes
Application f5 big-ip_domain_name_system < 16.1.5 Yes
Application f5 big-ip_domain_name_system < 17.1.2 Yes
Application f5 big-ip_fraud_protection_service < 16.1.5 Yes
Application f5 big-ip_fraud_protection_service < 17.1.2 Yes
Application f5 big-ip_global_traffic_manager < 16.1.5 Yes
Application f5 big-ip_global_traffic_manager < 17.1.2 Yes
Application f5 big-ip_link_controller < 16.1.5 Yes
Application f5 big-ip_link_controller < 17.1.2 Yes
Application f5 big-ip_local_traffic_manager < 16.1.5 Yes
Application f5 big-ip_local_traffic_manager < 17.1.2 Yes
Application f5 big-ip_policy_enforcement_manager < 16.1.5 Yes
Application f5 big-ip_policy_enforcement_manager < 17.1.2 Yes
Application f5 big-ip_next_cloud-native_network_functions < 1.4.0 Yes
Application f5 big-ip_next_service_proxy_for_kubernetes < 1.7.9 Yes
Application f5 big-ip_next_service_proxy_for_kubernetes ≤ 1.9.2 Yes
References