Data Corruption Vulnerability in F5 BIG-IP Systems
CVE-2025-58424

6.3MEDIUM

Key Information:

Vendor

F5
Status
Big-ip
Vendor
CVE Published:
15 October 2025

What is CVE-2025-58424?

On F5 BIG-IP systems, undisclosed traffic can lead to data corruption and unauthorized alteration of data in protocols lacking message integrity protection. This vulnerability affects specific software versions, particularly those still under technical support, posing significant risks to the integrity of data processed within the system.

Affected Version(s)

BIG-IP 17.1.0 < 17.1.2.2

BIG-IP 16.1.0 < 16.1.6

BIG-IP 15.1.0 < 15.1.10.8

References

https://my.f5.com/manage/s/article/K000151297
vendor-advisory

CVSS V4

Score:
6.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

F5
JSON
.
CVE-2025-58424 : Data Corruption Vulnerability in F5 BIG-IP Systems