Description Preview
The vulnerability CVE-2025-24312 is a high severity issue that affects F5's BIG-IP AFM product. The problem arises when BIG-IP AFM is provisioned with the IPS module enabled and a protocol inspection profile is configured on a virtual server or firewall rule or policy. In such a scenario, undisclosed traffic can cause an increase in CPU resource utilization, potentially leading to a denial of service. The vulnerability has a CVSS v3.1 base score of 7.5 and a CVSS v4.0 base score of 8.7.
Overview
The vulnerability is associated with the allocation of resources without limits or throttling (CWE-770). It affects BIG-IP versions 17.1.0, 16.1.0, and 15.1.0. However, certain hotfixes for versions 16.1.0 and 15.1.0 are unaffected. The BIG-IP Next CNF product is also affected for versions less than 1.4.0.
Remediation
Users are advised to apply the hotfixes "Hotfix-BIGIP-16.1.5.2.0.7.5-ENG.iso" for version 16.1.0 and "Hotfix-BIGIP-15.1.10.6.0.11.6-ENG.iso" for version 15.1.0. For BIG-IP Next CNF, users should upgrade to version 1.4.0 or later. For more detailed information and assistance, users should refer to the vendor advisory.
References
Vendor Advisory: F5 Vendor Advisory
Industry ExposureMost to leastThis section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.
- Management of Companies & EnterprisesManagement of Companies & Enterprises
- Professional, Scientific, & Technical ServicesProfessional, Scientific, & Technical Services
- Transportation & WarehousingTransportation & Warehousing
- Accommodation & Food ServicesAccommodation & Food Services
- Administrative, Support, Waste Management & Remediation ServicesAdministrative, Support, Waste Management & Remediation Services
- Agriculture, Forestry Fishing & HuntingAgriculture, Forestry Fishing & Hunting
- Arts, Entertainment & RecreationArts, Entertainment & Recreation
- ConstructionConstruction
- Educational ServicesEducational Services
- Finance and InsuranceFinance and Insurance
- Health Care & Social AssistanceHealth Care & Social Assistance
- InformationInformation
- ManufacturingManufacturing
- MiningMining
- Other Services (except Public Administration)Other Services (except Public Administration)
- Public AdministrationPublic Administration
- Real Estate Rental & LeasingReal Estate Rental & Leasing
- Retail TradeRetail Trade
- UtilitiesUtilities
- Wholesale TradeWholesale Trade
