CVE-2025-54854
15.10.2025, 14:15
When a BIG-IP APM OAuth access profile (Resource Server or Resource Client) is configured on a virtual server, undisclosed traffic can cause the apmdprocess to terminate.Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.Enginsight
| Vendor | Product | Version |
|---|---|---|
| f5 | big-ip_access_policy_manager | 15.1.0 ≤ 𝑥 < 15.1.10.8 |
| f5 | big-ip_access_policy_manager | 16.1.0 ≤ 𝑥 < 16.1.6.1 |
| f5 | big-ip_access_policy_manager | 17.1.0 ≤ 𝑥 < 17.1.3 |
| f5 | big-ip_access_policy_manager | 17.5.0 ≤ 𝑥 ≤ 17.5.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration