Privilege Escalation Vulnerability in F5OS-A and F5OS-C Systems by F5 Networks
CVE-2025-57780

8.5HIGH

Key Information:

Vendor: F5
Status: F5os - Appliance; F5os - Chassis
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-57780?

A security vulnerability has been identified in the F5OS-A and F5OS-C systems that allows an authenticated attacker with local access to elevate their privileges. This could potentially enable the attacker to bypass security controls, leading to unauthorized access and possible manipulation of system functions. It is important to note that software versions that have reached End of Technical Support (EoTS) are not part of this evaluation. Organizations using these systems are advised to review their security protocols to mitigate the risks associated with this vulnerability.

Affected Version(s)

F5OS - Appliance 1.8.0 < 1.8.3

F5OS - Appliance 1.5.0 < 1.5.4

F5OS - Chassis 1.8.0 < 1.8.2

References

https://my.f5.com/manage/s/article/K000156771

vendor-advisory

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Oct 3, 2025

Credit

JSON