Unrated severityNVD Advisory· Published Oct 15, 2025· Updated Feb 26, 2026
BIG-IP MPTCP vulnerability
CVE-2025-48008
Description
When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server, undisclosed traffic along with conditions beyond the attacker's control can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
3- F5/BIG-IPv5Range: 17.1.0
- F5/BIG-IP Next CNFv5Range: 1.1.0
- F5/BIG-IP Next SPKv5Range: 1.7.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- my.f5.com/manage/s/article/K000150614mitrevendor-advisory
News mentions
0No linked articles in our index yet.