Primary

Context

F5 BIG-IP Appliance Mode Bypass Vulnerability via SCP and SFTP

Vulnerability

A vulnerability exists in F5 BIG-IP when running in Appliance mode, allowing a highly privileged authenticated attacker with access to SCP and SFTP to bypass Appliance mode restrictions using undisclosed commands. This issue is limited to the control plane, with no exposure in the data plane.

Impact

Exploitation of this vulnerability could lead to unauthorized bypassing of Appliance mode restrictions, potentially allowing attackers to execute commands that could disrupt normal operations or compromise the system.

Remediation

Users can upgrade to BIG-IP versions 17.5.1, 17.1.3, 16.1.6.1, or 15.1.10.8 to address this vulnerability. For more information about F5 hotfixes and point releases, refer to the F5 BIG-IP hotfix and point release matrix.

Added: Oct 15, 2025, 2:37 PM

Updated: Oct 15, 2025, 2:37 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

F5 BIG-IP Appliance Mode Bypass Vulnerability via SCP and SFTP

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating