Behavioral DoS Vulnerability in BIG-IP Advanced WAF/ASM by F5 Networks
CVE-2025-24326
8.9HIGH
Summary
The vulnerability resides in the configuration of the Behavioral DoS (BADoS) TLS Signatures feature in F5 Networks' BIG-IP Advanced WAF/ASM. When improperly managed, this could allow for undisclosed traffic patterns to lead to a significant increase in memory resource utilization. Organizations relying on this product must ensure that their configurations are properly optimized to mitigate potential performance issues.
Affected Version(s)
BIG-IP 17.1.0 < 17.1.2
BIG-IP 16.1.0 < 16.1.5
BIG-IP 15.1.0
References
CVSS V4
Score:
8.9
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
F5