CNNVD-202510-2151 Information

Oct 15, 2025 cve

CNNVD ID

CNNVD-202510-2151

CVE-2025-55036

  • CNNVD Published: 2025-10-15

Description (Chinese)

F5 BIG-IP和F5 SSL Orchestrator都是美国F5公司的产品。F5 BIG-IP是一款集成了网络流量管理、应用程序安全管理、负载均衡等功能的应用交付平台。F5 SSL Orchestrator是一套为SSL基础设施设计的一体化设备解决方案该产品提供基于策略的动态解密、加密和流量控制等功能。 F5 BIG-IP和F5 SSL Orchestrator存在缓冲区错误漏洞,该漏洞源于显式转发代理配置不当,可能导致内存损坏。

Description (English)

F5 BIG-IP and F5 SSL Orchestrator are products of the United States F5 Company. F5 BIG-IP is an application delivery platform that integrates the functions of network traffic management, application security management and load balance. F5 SSL Orchestrator is an integrated equipment solution designed for the SSL infrastructure that provides dynamic, strategy-based decryption, encryption and traffic control functions. F5 BIG-IP and F5 SSL Orchestrator had an error loophole in the buffer zone, which stemmed from the inappropriate configuration of the visible forwarding agent, which could cause memory damage.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

F5

Published

2025-10-15

Last Modified

2026-02-24

References

https://my.f5.com/manage/s/article/K000151368

Patch

https://my.f5.com/manage/s/article/K000151368

Share on: