CVE-2025-43878

When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CVSS v3 6.0 MEDIUM

6.0^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://my.f5.com/manage/s/article/K000139502	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:f5:f5os-a::::::::
	cpe:2.3:o:f5:f5os-c::::::::

OR	cpe:2.3:h:f5:r10600:-:::::::*
	cpe:2.3:h:f5:r10800:-:::::::*
	cpe:2.3:h:f5:r10900:-:::::::*
	cpe:2.3:h:f5:r12600-ds:-:::::::*
	cpe:2.3:h:f5:r12800-ds:-:::::::*
	cpe:2.3:h:f5:r12900-ds:-:::::::*
	cpe:2.3:h:f5:r5600:-:::::::*
	cpe:2.3:h:f5:r5800:-:::::::*
	cpe:2.3:h:f5:r5900:-:::::::*
	cpe:2.3:h:f5:velos_cx1610:-:::::::*
	cpe:2.3:h:f5:velos_cx410:-:::::::*

History

No history.

Information

Published : 2025-05-07 22:15

Updated : 2025-11-07 16:54

NVD link : CVE-2025-43878

Mitre link : CVE-2025-43878

CVE.ORG link : CVE-2025-43878

JSON object : View

Products Affected

f5

f5os-c
r10900
velos_cx1610
f5os-a
r10600
r5900
r12800-ds
r12900-ds
r10800
r12600-ds
r5800
velos_cx410
r5600

CWE

CWE-149

Improper Neutralization of Quoting Syntax

CWE-1286

Improper Validation of Syntactic Correctness of Input

{"id": "CVE-2025-43878", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "f5sirt@f5.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.0, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 0.8}], "cvssMetricV40": [{"type": "Secondary", "source": "f5sirt@f5.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.3, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-05-07T22:15:20.867", "references": [{"url": "https://my.f5.com/manage/s/article/K000139502", "tags": ["Vendor Advisory"], "source": "f5sirt@f5.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "f5sirt@f5.com", "description": [{"lang": "en", "value": "CWE-149"}, {"lang": "en", "value": "CWE-1286"}]}], "descriptions": [{"lang": "en", "value": "When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system.\u00a0\n\n\n\nNote: Software versions which have reached End of Technical Support (EoTS) are not evaluated."}, {"lang": "es", "value": "Al ejecutarse en modo Dispositivo, un atacante autenticado con el rol de Administrador o Administrador de Recursos podr\u00eda eludir las restricciones del modo Dispositivo mediante la utilidad de diagn\u00f3stico del sistema tcpdump en un sistema F5OS-C/A. Nota: Las versiones de software que han alcanzado el fin del soporte t\u00e9cnico (EoTS) no se eval\u00faan."}], "lastModified": "2025-11-07T16:54:44.003", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:f5:f5os-a:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4745016-45DE-4276-8281-95A6CE81DC46", "versionEndExcluding": "1.8.0", "versionStartIncluding": "1.5.1"}, {"criteria": "cpe:2.3:o:f5:f5os-c:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF2910A9-DD68-4E44-8805-3392DA88A297", "versionEndIncluding": "1.6.2", "versionStartIncluding": "1.6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:f5:r10600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B494DEE-B373-4B3F-95C1-2E0997F32B6E"}, {"criteria": "cpe:2.3:h:f5:r10800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5BC625D5-C59F-4D20-BA92-0EC85DAB8AFA"}, {"criteria": "cpe:2.3:h:f5:r10900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4233544A-999C-42CD-9B61-E639AAA460B9"}, {"criteria": "cpe:2.3:h:f5:r12600-ds:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C6219686-1E3F-4CDE-9FC4-F73BD955673B"}, {"criteria": "cpe:2.3:h:f5:r12800-ds:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A18BFB9A-11E7-4E9B-BF73-2A87EBE778BE"}, {"criteria": "cpe:2.3:h:f5:r12900-ds:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7E078C9F-98BC-42D4-9876-06952239EE17"}, {"criteria": "cpe:2.3:h:f5:r5600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24DA75BA-A4B7-46BD-887D-03CDFAF22791"}, {"criteria": "cpe:2.3:h:f5:r5800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "52B4EBB6-BEEB-42DA-A146-10E401226BED"}, {"criteria": "cpe:2.3:h:f5:r5900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "55433400-8996-44B8-94D7-81690145EF94"}, {"criteria": "cpe:2.3:h:f5:velos_cx1610:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E8C75C91-81A8-455B-AF36-8DF24C0365FB"}, {"criteria": "cpe:2.3:h:f5:velos_cx410:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "495302C5-8C7D-4D2C-985C-B18E26D8C7DC"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "f5sirt@f5.com"}