VYPR
Unrated severityNVD Advisory· Published Feb 5, 2025· Updated Feb 26, 2026

BIG-IP iControl REST vulnerability

CVE-2025-23239

Description

When running in Appliance mode, and logged into a highly-privileged role, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2025-23239 · VYPR