MeldSecurity
Press Enter to search
CVE Database & Search โ†’
Sign In Get Started

CVE-2025-61951

๐Ÿ”ด HIGH

Undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.ย  This issue may occur when a Datagram Transport Layer Security (DTLS) 1.2 virtual server is enabled with a Server S...

Published
Oct 15, 2025
Last Modified
Oct 21, 2025
Views
3
Bookmarks
0

Description

Request Expert Review

Undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.ย  This issue may occur when a Datagram Transport Layer Security (DTLS) 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign Hashย set to ANY, and the backend server is enabled with DTLS 1.2 and client authentication.ย ย Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected Products (42)

f5 - big-ip_access_policy_manager

Version: *

f5 - big-ip_advanced_firewall_manager

Version: *

f5 - big-ip_advanced_web_application_firewall

Version: *

f5 - big-ip_analytics

Version: *

f5 - big-ip_application_acceleration_manager

Version: *

f5 - big-ip_application_security_manager

Version: *

f5 - big-ip_application_visibility_and_reporting

Version: *

f5 - big-ip_automation_toolchain

Version: *

f5 - big-ip_carrier-grade_nat

Version: *

f5 - big-ip_container_ingress_services

Version: *

f5 - big-ip_ddos_hybrid_defender

Version: *

f5 - big-ip_domain_name_system

Version: *

f5 - big-ip_edge_gateway

Version: *

f5 - big-ip_fraud_protection_service

Version: *

f5 - big-ip_global_traffic_manager

Version: *

f5 - big-ip_link_controller

Version: *

f5 - big-ip_local_traffic_manager

Version: *

f5 - big-ip_policy_enforcement_manager

Version: *

f5 - big-ip_ssl_orchestrator

Version: *

f5 - big-ip_webaccelerator

Version: *

f5 - big-ip_websafe

Version: *

f5 - big-ip_access_policy_manager

Version: 17.5.0

f5 - big-ip_advanced_firewall_manager

Version: 17.5.0

f5 - big-ip_advanced_web_application_firewall

Version: 17.5.0

f5 - big-ip_analytics

Version: 17.5.0

f5 - big-ip_application_acceleration_manager

Version: 17.5.0

f5 - big-ip_application_security_manager

Version: 17.5.0

f5 - big-ip_application_visibility_and_reporting

Version: 17.5.0

f5 - big-ip_automation_toolchain

Version: 17.5.0

f5 - big-ip_carrier-grade_nat

Version: 17.5.0

f5 - big-ip_container_ingress_services

Version: 17.5.0

f5 - big-ip_ddos_hybrid_defender

Version: 17.5.0

f5 - big-ip_domain_name_system

Version: 17.5.0

f5 - big-ip_edge_gateway

Version: 17.5.0

f5 - big-ip_fraud_protection_service

Version: 17.5.0

f5 - big-ip_global_traffic_manager

Version: 17.5.0

f5 - big-ip_link_controller

Version: 17.5.0

f5 - big-ip_local_traffic_manager

Version: 17.5.0

f5 - big-ip_policy_enforcement_manager

Version: 17.5.0

f5 - big-ip_ssl_orchestrator

Version: 17.5.0

f5 - big-ip_webaccelerator

Version: 17.5.0

f5 - big-ip_websafe

Version: 17.5.0

CVSS Scores

CVSS 3.1 7.5
7.5
HIGH
CVSS 2.0 7.5

References

my.f5.com

Additional Information

Source
f5sirt@f5.com
State
Analyzed

Related CVEs

CVE-2025-13264

MEDIUM

A security flaw has been discovered in SourceCodester Online Magazine Management System 1.0. This affects an unknown part of the file /view_magazine.p...

Score: 6.3

CVE-2025-13263

MEDIUM

A vulnerability was identified in SourceCodester Online Magazine Management System 1.0. Affected by this issue is some unknown functionality of the fi...

Score: 6.3

CVE-2025-13262

HIGH

A vulnerability was determined in lsfusion platform up to 6.1. Affected by this vulnerability is the function UploadFileRequestHandler of the file pla...

Score: 7.3

CVE-2025-13284

CRITICAL

ThinPLUS developed by ThinPLUS has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands an...

Score: 9.8

CVE-2025-13283

HIGH

TenderDocTransfer developed by Chunghwa Telecom has a Arbitrary File Copy and Paste vulnerability. The application sets up a simple local web server...

Score: 7.1

CVE-2025-13282

HIGH

TenderDocTransfer developed by Chunghwa Telecom has a Arbitrary File Delete vulnerability. The application sets up a simple local web server and provi...

Score: 8.1

Share CVE-2025-61951

Share on Social Media

Copy Link

Embed Code

Request Expert Analysis

Request a professional security analysis for CVE-2025-61951 from our verified experts.

Credits System

Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime!

Add 3 credits for accelerated delivery

Base Cost: 8 credits
Priority Upgrade: + credits
SLA Acceleration: +3 credits
Total Cost:
Your Balance:

Insufficient Credits

You need more credits to submit this request.

Buy Credits

Report Analysis