Unrated severityNVD Advisory· Published Feb 5, 2025· Updated Feb 26, 2026
BIG-IP iControl REST vulnerability
CVE-2025-23239
Description
When running in Appliance mode, and logged into a highly-privileged role, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
1Patches
Vulnerability mechanics
References
1- my.f5.com/manage/s/article/K000138757mitrevendor-advisory
News mentions
0No linked articles in our index yet.