F5 Enhances BIG-IP Appliances with Quarterly Security Updates

F5 Networks has implemented several critical security updates to its BIG-IP appliances, including the BIG-IP Next and BIG-IQ systems, addressing multiple vulnerabilities that could allow attackers to execute malicious code.

Network administrators using BIG-IP appliances are advised to review the detailed information regarding these quarterly security updates. The updates rectify various software vulnerabilities that could enable attackers to disrupt device operations.

Among the significant threats identified is a vulnerability in the iControl-REST component (CVE-2025-20029), classified as high severity, which affects all modules of BIG-IP. This vulnerability allows an authenticated remote attacker to exploit the system by sending crafted requests that could lead to the execution of arbitrary commands at the system level. Additionally, these attackers could potentially create or delete files within the system.

Another critical issue arises when the routing profile of BIG-IP is configured on a virtual server. In such cases, specific data traffic processing could lead to excessive memory consumption (CVE-2025-20058), which often results in a Denial of Service (DoS) condition, causing system crashes. In severe situations, this could prevent appliances from processing any traffic, leading to significant network disruptions.

Despite the absence of reported attacks exploiting these vulnerabilities at the moment, it is imperative for administrators to promptly apply the security updates. This proactive measure will help fortify corporate networks against potential future threats.