CVE-2025-59478
HIGHDescription
When a BIG-IP AFM denial-of-service (DoS) protection profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Is your site exposed to CVE-2025-59478?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| f5 | big-ip_advanced_firewall_manager |
| f5 | big-ip_advanced_firewall_manager |
| f5 | big-ip_advanced_firewall_manager |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-59478? +
How severe is CVE-2025-59478? +
What products are affected by CVE-2025-59478? +
How do I check if I'm vulnerable to CVE-2025-59478? +
Related Vulnerabilities
Access of Uninitialized Pointer vulnerability in TP-Link WR940N and WR941ND allows local unauthenticated attackers the ability to execute DoS attack …
In AzeoTech DAQFactory release 20.7 (Build 2555), an Access of Uninitialized Pointer vulnerability can be exploited by an attacker which …
A memory corruption vulnerability exists in Foxit Reader 2025.1.0.27937 due to the use of an uninitialized pointer. A specially crafted …
Memory corruption while verifying the serialized header when the key pairs are generated.
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable …
A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 10). The affected application is vulnerable …