Unrated severityNVD Advisory· Published Oct 15, 2025· Updated Feb 26, 2026
BIG-IP SSL/TLS vulnerability
CVE-2025-60016
Description
When Diffie-Hellman (DH) group Elliptic Curve Cryptography (ECC) Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected products
3- F5/BIG-IPv5Range: 17.1.0
- F5/BIG-IP Next CNFv5Range: 1.1.0
- F5/BIG-IP Next SPKv5Range: 1.7.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- my.f5.com/manage/s/article/K000139514mitrevendor-advisory
News mentions
0No linked articles in our index yet.