CVE-2025-35995
07.05.2025, 22:15
When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an iRule with the urlcatcommand is enabled on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate.Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.Enginsight
Vendor | Product | Version |
---|---|---|
f5 | big-ip_policy_enforcement_manager | 15.1.0 ≤ 𝑥 < 15.1.10.7.0.4.5-ENG |
f5 | big-ip_policy_enforcement_manager | 16.1.0 ≤ 𝑥 < 16.1.6 |
f5 | big-ip_policy_enforcement_manager | 17.1.0 ≤ 𝑥 < 17.1.2.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration