【Vulnerability Alert】Two critical security vulnerabilities have been identified in F5’s operating system (OS).

publish date : 2025-10-23 update date : 2025-10-23

Source: Ministry of education information & communication security contingency platform

"" "" ""


Publication Number	TACERT-ANA-2025101704101919	Publication Time	2025/10/17 16:59
Incident Type	ANA-Vulnerability Alert	Discovery Time	2025/10/17 16:59
Impact Level	Low
[Subject] 【Vulnerability Alert】Two critical security vulnerabilities have been identified in F5’s operating system (OS).
[Content] Forwarded from TWCERTCC-200-202510-00000010 Recently, multi-cloud application services and security provider F5 disclosed two critical security vulnerabilities — CVE-2025-57780 (CVSS v3.x: 8.8) and CVE-2025-61955 (CVSS: 8.8). Both vulnerabilities allow authenticated attackers with local access to escalate privileges and execute arbitrary system commands. Information Sharing Level: WHITE (Information content can be publicly disclosed)
[Affected Platform] ● F5OS - Appliance 1.8.0 ● F5OS - Appliance versions 1.5.1 to 1.5.3 ● F5OS - Chassis versions 1.8.0 to 1.8.1 ● F5OS - Chassis versions 1.6.0 to 1.6.2
[Recommended Actions] ● F5OS - Appliance version 1.8.3 ● F5OS - Appliance version 1.5.4 ● F5OS - Chassis version 1.8.2 ● F5OS - Chassis version 1.6.4
[Reference] https://www.twcert.org.tw/tw/cp-169-10448-d4b78-1.html

(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw

Organizer: Computer Center

Click Num:

Share